Overview

overview

10

Static

static

OI.dll

windows7-x64

10

OI.dll

windows10-2004-x64

10

Resubmissions

01-02-2023 16:08

230201-tldxdsaf27 10

01-02-2023 16:02

230201-tg48saae85 1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    OI.png

  • Size

    669KB

  • Sample

    230201-tldxdsaf27

  • MD5

    8b2cb58900ed9236439391ce26b563b5

  • SHA1

    9169878c612fa655a6d5fb04ee889cff2c7365b8

  • SHA256

    42f6bdd20fcba580845c8d2b068770295285c80afa76207e62c46daa4d49ac4c

  • SHA512

    b7c6e0c194d470cee85e7611fd893a1832afff5b39493d57e79d6d24ba19c8875313d39f5427d9585df2929f0847a1d5abf275893d51a29527f054e94665c30b

  • SSDEEP

    12288:ubjQRl3iZwl3JBrySD9CkkqC28DWl0RJK2LgAN4c1DZx+vaPpsnRl83+u:uHWZiZCCMCkkbRDeSjcjc1DZUyBsRa

Score
10/10
qakbotbb121675243711bankerstealertrojan

Malware Config

Extracted

Family

qakbot

Version

404.438

Botnet

BB12

Campaign

1675243711

C2

12.172.173.82:2087

95.94.41.77:2222

73.22.121.210:443

200.109.207.186:2222

75.143.236.149:443

69.133.162.35:443

197.148.17.17:2078

82.36.36.76:443

27.0.48.233:443

90.162.45.154:2222

125.20.112.94:443

150.107.231.59:2222

91.82.5.101:443

217.128.91.196:2222

73.161.176.218:443

50.60.157.175:995

190.199.188.186:2222

93.147.235.8:443

183.87.163.165:443

82.121.195.187:2222
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

    • Target

      OI.png

    • Size

      669KB

    • MD5

      8b2cb58900ed9236439391ce26b563b5

    • SHA1

      9169878c612fa655a6d5fb04ee889cff2c7365b8

    • SHA256

      42f6bdd20fcba580845c8d2b068770295285c80afa76207e62c46daa4d49ac4c

    • SHA512

      b7c6e0c194d470cee85e7611fd893a1832afff5b39493d57e79d6d24ba19c8875313d39f5427d9585df2929f0847a1d5abf275893d51a29527f054e94665c30b

    • SSDEEP

      12288:ubjQRl3iZwl3JBrySD9CkkqC28DWl0RJK2LgAN4c1DZx+vaPpsnRl83+u:uHWZiZCCMCkkbRDeSjcjc1DZUyBsRa

    Score
    10/10
    qakbotbb121675243711bankerstealertrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks