General

  • Target

    c6.dll

  • Size

    744KB

  • Sample

    221202-c3q5lsee27

  • MD5

    acb7cbc7849093e176fdb174a7095ae5

  • SHA1

    35d6908536abe74542d114f56aaaa61346e57ba3

  • SHA256

    83a8bffa20422e5b4b4d1981506c4ff9652b8886df4de045ef781e4595014fe9

  • SHA512

    137a557ff1e9c861ba88e19f27b6a7e6b53d46e228d14f16020e4836ac251f58cf70712b813e00b5b16d5aa9536748e5d199ec9be29509bbf77c64ec67540115

  • SSDEEP

    12288:cBA/2eiIRvULU1QYM3QGBjfR7taXIIg7WP58FXW+tlkzWKgHd6QQBGPpBMkff:R+81q5QOR7QUWYxYO0BEnHf

Malware Config

Extracted

Family

qakbot

Version

404.46

Botnet

tzr03

Campaign

1669896814

C2

105.99.88.96:443

92.189.214.236:2222

108.162.6.34:443

84.35.26.14:995

12.172.173.82:990

188.54.99.243:995

71.31.101.183:443

80.13.179.151:2222

90.119.197.132:2222

47.41.154.250:443

109.149.148.184:2222

82.9.210.36:443

75.161.233.194:995

81.229.117.95:2222

90.116.219.167:2222

90.162.45.154:2222

190.74.104.149:465

76.100.159.250:443

105.108.215.158:990

197.0.145.209:443

Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

    • Target

      c6.dll

    • Size

      744KB

    • MD5

      acb7cbc7849093e176fdb174a7095ae5

    • SHA1

      35d6908536abe74542d114f56aaaa61346e57ba3

    • SHA256

      83a8bffa20422e5b4b4d1981506c4ff9652b8886df4de045ef781e4595014fe9

    • SHA512

      137a557ff1e9c861ba88e19f27b6a7e6b53d46e228d14f16020e4836ac251f58cf70712b813e00b5b16d5aa9536748e5d199ec9be29509bbf77c64ec67540115

    • SSDEEP

      12288:cBA/2eiIRvULU1QYM3QGBjfR7taXIIg7WP58FXW+tlkzWKgHd6QQBGPpBMkff:R+81q5QOR7QUWYxYO0BEnHf

MITRE ATT&CK Matrix

Tasks