General

  • Target

    a99cc099b6f3aba69cfbf5622a49a3a18656ef37aede59f602592e474feb33a1

  • Size

    5.3MB

  • Sample

    230129-r77qgsbe86

  • MD5

    355f26c227eb69420a10178dc4256e5d

  • SHA1

    a0d4518b19d76d5eabdb815c02228821160dc05c

  • SHA256

    a99cc099b6f3aba69cfbf5622a49a3a18656ef37aede59f602592e474feb33a1

  • SHA512

    bc293a5085b9a55d06a0e4177d7bbc02a27c5dc508114929559db4d38623af78df79146b7d10ae3ee9622d0cc06d9a037be858b9b283e28c5fbef02bcfe1b32f

  • SSDEEP

    12288:WP7EiG90hJb9OWf/90yzhmasNmQnH22QG:eiH2O

Malware Config

Extracted

Family

qakbot

Version

323.91

Botnet

spx18

Campaign

1570091485

C2

71.77.231.251:443

73.226.220.56:443

12.176.32.146:443

174.16.255.191:993

173.22.120.11:2222

162.244.225.30:443

159.118.173.115:995

72.197.50.23:443

203.192.232.72:443

99.228.242.183:995

111.125.70.30:2222

50.247.230.33:443

75.70.218.193:443

73.179.178.78:443

115.132.1.217:443

72.16.212.107:995

192.24.181.185:443

65.30.12.240:995

108.5.32.66:443

72.213.98.233:443

Targets

    • Target

      a99cc099b6f3aba69cfbf5622a49a3a18656ef37aede59f602592e474feb33a1

    • Size

      5.3MB

    • MD5

      355f26c227eb69420a10178dc4256e5d

    • SHA1

      a0d4518b19d76d5eabdb815c02228821160dc05c

    • SHA256

      a99cc099b6f3aba69cfbf5622a49a3a18656ef37aede59f602592e474feb33a1

    • SHA512

      bc293a5085b9a55d06a0e4177d7bbc02a27c5dc508114929559db4d38623af78df79146b7d10ae3ee9622d0cc06d9a037be858b9b283e28c5fbef02bcfe1b32f

    • SSDEEP

      12288:WP7EiG90hJb9OWf/90yzhmasNmQnH22QG:eiH2O

MITRE ATT&CK Enterprise v6

Tasks