qakbot | e13ad81df8180304b63cc48f428ca4a862e4727170b5ac85501d2bc44a3aff01

General

Target

944-57-0x00000000008F0000-0x000000000091A000-memory.dmp
Size

168KB
Sample

221103-kt88tsagem
MD5

1ea880eb13831f2e8399015bb1e71480
SHA1

9b7dcaeae1281fa4a85ff666fddfbab70e065ecc
SHA256

e13ad81df8180304b63cc48f428ca4a862e4727170b5ac85501d2bc44a3aff01
SHA512

6e19b5122b18fccba8e2224ec61f946cdae5ba3ce3987eb66ad5ec40422516ff98ebf3bcf9c710fc6b3c189930889377cd7ec7f69c739351f88e8782e242e0b5
SSDEEP

3072:M/lYHYBK2fctFyhA3INlfA4JWqNLUTBfdVg0GO/yaxX1:zHu/UShA3INlo4JjNLUTBVVLJ/

Score

10^/10

Malware Config

Extracted

Family

qakbot

Version

404.14

Botnet

obama220

Campaign

1667373670

C2

174.0.224.214:443

1.70.60.142:54792

74.33.84.227:443

1.175.205.2:13825

187.1.1.45:12681

190.24.45.24:995

1.50.68.204:18177

193.3.19.137:443

1.41.44.11:58115

73.165.119.20:443

58.247.115.126:995

1.84.35.26:3587

216.82.134.218:443

1.181.164.194:58369

187.1.1.74:23795

71.199.168.185:443

1.94.49.5:29697

187.0.1.108:11471

186.73.140.43:443

1.97.119.214:59649

Attributes

salt
SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

- Target
  
  944-57-0x00000000008F0000-0x000000000091A000-memory.dmp
- Size
  
  168KB
- MD5
  
  1ea880eb13831f2e8399015bb1e71480
- SHA1
  
  9b7dcaeae1281fa4a85ff666fddfbab70e065ecc
- SHA256
  
  e13ad81df8180304b63cc48f428ca4a862e4727170b5ac85501d2bc44a3aff01
- SHA512
  
  6e19b5122b18fccba8e2224ec61f946cdae5ba3ce3987eb66ad5ec40422516ff98ebf3bcf9c710fc6b3c189930889377cd7ec7f69c739351f88e8782e242e0b5
- SSDEEP
  
  3072:M/lYHYBK2fctFyhA3INlfA4JWqNLUTBfdVg0GO/yaxX1:zHu/UShA3INlo4JjNLUTBVVLJ/
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2