Overview

overview

10

Static

static

10

2460-135-0...ry.dll

windows7-x64

1

2460-135-0...ry.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2460-135-0x0000000000F10000-0x0000000000F33000-memory.dmp

  • Size

    140KB

  • Sample

    230205-ayf3qsfc62

  • MD5

    41c70eeb837d366dbacf9c83e7618889

  • SHA1

    a518c80592c5a5c2698e6767aec817ccbd577205

  • SHA256

    a8867456399a877c521e6d39a79f6835590cd8e63fd0b5b1964a3df1d9c7d97c

  • SHA512

    2d7400e806d63d164a1932c2967edd41f5339f5b3e8ac98653282561bb9d6d75ee81fa37b38dfb5e59fd3d82d2f7c8cb7208ae9f36585b41d0021829ad2aec54

  • SSDEEP

    3072:sBCoAHrIGweXf4kuT5CE3alAG6SKJoFZXHTBfPAZC:3HrIGPXQJ5RaWG6SKJeZXHTBHAZ

Score
10/10
qakbotbb121675352134

Malware Config

Extracted

Family

qakbot

Version

404.432

Botnet

BB12

Campaign

1675352134

C2

213.67.255.57:2222

86.96.72.139:2222

119.82.122.226:443

86.96.34.182:2222

12.172.173.82:50001

107.146.12.26:2222

97.116.78.96:443

47.61.70.188:2078

197.148.17.17:2078

82.127.204.82:2222

82.121.195.187:2222

73.155.10.79:443

91.231.173.199:995

86.196.12.21:2222

90.78.51.182:2222

90.165.109.4:2222

202.186.177.88:443

92.27.86.48:2222

88.171.156.150:50000

78.130.215.67:443
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

    • Target

      2460-135-0x0000000000F10000-0x0000000000F33000-memory.dmp

    • Size

      140KB

    • MD5

      41c70eeb837d366dbacf9c83e7618889

    • SHA1

      a518c80592c5a5c2698e6767aec817ccbd577205

    • SHA256

      a8867456399a877c521e6d39a79f6835590cd8e63fd0b5b1964a3df1d9c7d97c

    • SHA512

      2d7400e806d63d164a1932c2967edd41f5339f5b3e8ac98653282561bb9d6d75ee81fa37b38dfb5e59fd3d82d2f7c8cb7208ae9f36585b41d0021829ad2aec54

    • SSDEEP

      3072:sBCoAHrIGweXf4kuT5CE3alAG6SKJoFZXHTBfPAZC:3HrIGPXQJ5RaWG6SKJeZXHTBHAZ

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks