General
-
Target
qbot.dll
-
Size
168KB
-
Sample
221227-x8g44sga83
-
MD5
440598ea1a8615f023e326831c0274f3
-
SHA1
252ec65a80893ed14be05691be1d9bc02d36fe3d
-
SHA256
9aa954c537ff7b9e77a625fff2985031ea503818bdef318c5905b0cd206988a2
-
SHA512
ad53110f96f4e01e8da042ad5cca81c22555e94880e04501c83ea72052622ef0f9d99b24bfcb235c635ff4331b9e42f2a9a4e994827344d814b9fba9ef04e4f2
-
SSDEEP
3072:wgikbXp3BvScvqzzxVvAAWJ6Az7HTBfZl9O/yaxv:nTdRXvqXxh1WJJz7HTBRlM/
Malware Config
Extracted
qakbot
404.46
BB10
1670918350
76.100.159.250:443
83.92.85.93:443
149.126.159.106:443
50.68.204.71:995
47.41.154.250:443
24.206.27.39:443
93.147.235.8:443
12.172.173.82:995
184.68.116.146:2222
74.83.128.70:2083
73.161.176.218:443
108.6.249.139:443
79.13.202.140:443
82.9.210.36:443
90.66.229.185:2222
84.35.26.14:995
37.56.111.49:995
92.186.69.229:2222
50.68.204.71:443
71.31.101.183:443
46.10.198.106:443
199.83.165.233:443
2.98.146.106:995
45.152.16.14:443
89.129.109.27:2222
90.104.22.28:2222
72.80.7.6:995
84.215.202.22:443
174.77.209.5:443
213.67.255.57:2222
108.162.6.34:443
31.167.254.199:995
87.202.101.164:50000
41.231.232.134:995
86.130.9.250:2222
109.136.130.9:2222
50.68.204.71:993
184.176.154.83:995
92.207.132.174:2222
142.161.27.232:2222
190.133.232.250:443
70.55.120.16:2222
69.133.162.35:443
12.172.173.82:21
90.89.95.158:2222
181.118.183.50:443
90.194.186.175:443
103.144.201.62:2078
150.107.231.59:2222
109.159.118.162:2222
47.34.30.133:443
86.225.214.138:2222
66.90.198.204:443
184.68.116.146:2078
124.122.55.7:443
176.142.207.63:443
198.2.51.242:993
73.36.196.11:443
86.98.23.199:443
176.151.15.101:443
181.164.194.223:443
92.154.17.149:2222
184.68.116.146:61202
77.124.17.122:443
162.248.14.107:443
24.228.132.224:2222
88.126.94.4:50000
174.104.184.149:443
80.44.148.126:2222
12.172.173.82:22
75.98.154.19:443
24.142.218.202:443
70.77.116.233:443
188.24.214.226:443
109.11.175.42:2222
74.92.243.113:50000
12.172.173.82:50001
76.20.42.45:443
190.24.45.24:995
91.254.230.18:443
49.175.72.56:443
12.172.173.82:20
75.99.125.236:2222
74.66.134.24:443
172.90.139.138:2222
173.239.94.212:443
91.169.12.198:32100
24.71.120.191:443
103.71.21.107:443
66.191.69.18:995
121.121.100.148:995
78.101.91.215:2222
98.145.23.67:443
12.172.173.82:990
197.94.86.141:443
197.0.32.186:443
91.68.227.219:443
12.172.173.82:993
190.199.126.108:993
173.18.126.3:443
100.36.249.75:995
92.24.200.226:995
184.153.132.82:443
69.119.123.159:2222
70.64.77.115:443
81.229.117.95:2222
216.160.116.140:2222
92.189.214.236:2222
70.115.104.126:995
98.147.155.235:443
184.68.116.146:3389
73.230.28.7:443
102.40.202.189:995
103.141.50.151:995
86.99.14.46:2222
86.96.75.237:2222
12.172.173.82:465
-
salt
SoNuce]ugdiB3c[doMuce2s81*uXmcvP
Targets
-
-
Target
qbot.dll
-
Size
168KB
-
MD5
440598ea1a8615f023e326831c0274f3
-
SHA1
252ec65a80893ed14be05691be1d9bc02d36fe3d
-
SHA256
9aa954c537ff7b9e77a625fff2985031ea503818bdef318c5905b0cd206988a2
-
SHA512
ad53110f96f4e01e8da042ad5cca81c22555e94880e04501c83ea72052622ef0f9d99b24bfcb235c635ff4331b9e42f2a9a4e994827344d814b9fba9ef04e4f2
-
SSDEEP
3072:wgikbXp3BvScvqzzxVvAAWJ6Az7HTBfZl9O/yaxv:nTdRXvqXxh1WJJz7HTBRlM/
-