General

  • Target

    1592-59-0x00000000001F0000-0x000000000021A000-memory.dmp

  • Size

    168KB

  • Sample

    221116-vq21fscb59

  • MD5

    841caeb9df648c6f86147409eec5ca68

  • SHA1

    c508dc3560f8a8d2b9231d3ddede9abea11a514f

  • SHA256

    0b6332d5c21ef5ce679012b3bdec9117c0416b6516eaa36fcec071e2679dc854

  • SHA512

    27b3014e938936b46078e59dfea5cfb3b7fc4f47807a4769bd1dc63f6376819032281bd81b9c5176c9b421e8d04d6b2f8dd9ca056ac7ff3d01288a8c27f7cf55

  • SSDEEP

    3072:qwXPDBCTDRojCZKk2Ws4+onAgJJZtKLTBfdSgcyO/ya+aY:H0RAPWs4FAgJftKLTBVS/N/

Score
10/10

Malware Config

Extracted

Family

qakbot

Version

404.27

Botnet

BB06

Campaign

1668492308

C2

49.175.72.56:443

81.229.117.95:2222

47.41.154.250:443

69.133.162.35:443

84.35.26.14:995

68.47.128.161:443

156.217.219.147:995

87.65.160.87:995

174.101.111.4:443

82.127.174.33:2222

91.169.12.198:32100

24.28.121.122:443

157.231.42.190:995

90.89.95.158:2222

74.33.84.227:443

24.64.114.59:2222

80.13.179.151:2222

64.207.237.118:443

24.206.27.39:443

170.253.25.35:443

Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

    • Target

      1592-59-0x00000000001F0000-0x000000000021A000-memory.dmp

    • Size

      168KB

    • MD5

      841caeb9df648c6f86147409eec5ca68

    • SHA1

      c508dc3560f8a8d2b9231d3ddede9abea11a514f

    • SHA256

      0b6332d5c21ef5ce679012b3bdec9117c0416b6516eaa36fcec071e2679dc854

    • SHA512

      27b3014e938936b46078e59dfea5cfb3b7fc4f47807a4769bd1dc63f6376819032281bd81b9c5176c9b421e8d04d6b2f8dd9ca056ac7ff3d01288a8c27f7cf55

    • SSDEEP

      3072:qwXPDBCTDRojCZKk2Ws4+onAgJJZtKLTBfdSgcyO/ya+aY:H0RAPWs4FAgJftKLTBVS/N/

    Score
    3/10

MITRE ATT&CK Matrix

Tasks