Overview

overview

10

Static

static

10

3444-135-0...ry.dll

windows7-x64

1

3444-135-0...ry.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3444-135-0x0000000002610000-0x0000000002633000-memory.dmp

  • Size

    140KB

  • Sample

    230203-zp6dpsee7x

  • MD5

    7d4b82b939d306a37431e2267e512248

  • SHA1

    5ffa8db159ec6ac301dbb300d3ba4ac5d657e0f9

  • SHA256

    e3beb2072c43cc4fa5e6f3b13eadb438f8b20c393816f91b5f09bb09675e1b64

  • SHA512

    78ce87aaa57720e2e302b15a8a35f8bf0a0845eec8009067e62141705a5e601bf6176531c80038b9c57e92cf8f706f8fcfa4c45a5657ebaf1cdea4861204cfaa

  • SSDEEP

    3072:m9FLCSyV/Xhv6uAnuupkvlTAlJav7plxfTBfHaXu:DV/XhCVnBmUlJiplxfTB/aX

Score
10/10
qakbotbb121675417198

Malware Config

Extracted

Family

qakbot

Version

404.432

Botnet

BB12

Campaign

1675417198

C2

12.172.173.82:995

12.172.173.82:2087

50.68.204.71:443

84.215.202.22:443

98.175.176.254:995

184.155.91.69:443

50.68.186.195:443

183.87.163.165:443

172.248.42.122:443

93.156.100.20:443

102.156.32.143:443

50.60.157.175:995

75.143.236.149:443

69.133.162.35:443

105.184.159.165:995

130.43.172.217:2222

82.36.36.76:443

73.223.248.31:443

202.142.98.62:443

73.161.176.218:443
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

    • Target

      3444-135-0x0000000002610000-0x0000000002633000-memory.dmp

    • Size

      140KB

    • MD5

      7d4b82b939d306a37431e2267e512248

    • SHA1

      5ffa8db159ec6ac301dbb300d3ba4ac5d657e0f9

    • SHA256

      e3beb2072c43cc4fa5e6f3b13eadb438f8b20c393816f91b5f09bb09675e1b64

    • SHA512

      78ce87aaa57720e2e302b15a8a35f8bf0a0845eec8009067e62141705a5e601bf6176531c80038b9c57e92cf8f706f8fcfa4c45a5657ebaf1cdea4861204cfaa

    • SSDEEP

      3072:m9FLCSyV/Xhv6uAnuupkvlTAlJav7plxfTBfHaXu:DV/XhCVnBmUlJiplxfTB/aX

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks