Overview

overview

10

Static

static

10

748-57-0x0...ry.dll

windows7-x64

3

748-57-0x0...ry.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    748-57-0x0000000000390000-0x00000000003BA000-memory.dmp

  • Size

    168KB

  • Sample

    221122-p5775agg51

  • MD5

    ddca563f218d63573bda7bb77cf3ead9

  • SHA1

    e497a2b7bcfc42d3943e18ea50e02711981e5ea8

  • SHA256

    20d4b052685c6a92cb94dbceafc8ed5a7f3adf84ca6b76f27ebb6032cc8bb0a6

  • SHA512

    09dc7ce9db096985c65cf158e0eaa5f30b90dc91df662143dcfd255fbd6e3df437c556431f987972bed6078cc1389600bc35401937b0d3fb08d25bcac4cf613e

  • SSDEEP

    3072:ywh1VjQ9AwZ1OswizhAQJPX1lnTBfJ8g+CO/ya+aY:7ehuswizKQJv1lnTBB8Zd/

Score
10/10
qakbotbb061668492308

Malware Config

Extracted

Family

qakbot

Version

404.27

Botnet

BB06

Campaign

1668492308

C2

49.175.72.56:443

81.229.117.95:2222

47.41.154.250:443

69.133.162.35:443

84.35.26.14:995

68.47.128.161:443

156.217.219.147:995

87.65.160.87:995

174.101.111.4:443

82.127.174.33:2222

91.169.12.198:32100

24.28.121.122:443

157.231.42.190:995

90.89.95.158:2222

74.33.84.227:443

24.64.114.59:2222

80.13.179.151:2222

64.207.237.118:443

24.206.27.39:443

170.253.25.35:443
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

    • Target

      748-57-0x0000000000390000-0x00000000003BA000-memory.dmp

    • Size

      168KB

    • MD5

      ddca563f218d63573bda7bb77cf3ead9

    • SHA1

      e497a2b7bcfc42d3943e18ea50e02711981e5ea8

    • SHA256

      20d4b052685c6a92cb94dbceafc8ed5a7f3adf84ca6b76f27ebb6032cc8bb0a6

    • SHA512

      09dc7ce9db096985c65cf158e0eaa5f30b90dc91df662143dcfd255fbd6e3df437c556431f987972bed6078cc1389600bc35401937b0d3fb08d25bcac4cf613e

    • SSDEEP

      3072:ywh1VjQ9AwZ1OswizhAQJPX1lnTBfJ8g+CO/ya+aY:7ehuswizKQJv1lnTBB8Zd/

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks