General
-
Target
536-139-0x0000000010000000-0x0000000010023000-memory.dmp
-
Size
140KB
-
Sample
230210-t7a3maah26
-
MD5
ed82fc2003bf5aca46dce000799bf6ab
-
SHA1
6e9f6c3fe5a88e6193e9c33b06a9feec4519abb2
-
SHA256
9f9fed856b2d5e7729425f4a74cd22b3f0bc37535fedb68a581f5c55b35f52c3
-
SHA512
436e113cd90044d1bff9f1aac3c098dbec57994e5cf038b9dfa7d3933f7cf368e8a345c5486061bad661a99c298f0cef18225186f725db16832b8dff50d27204
-
SSDEEP
3072:YKUR+AIznCp7BQCrZJzSWjsdA0Jl0nx8TBfPVo/g:YbIznCVKCtcWjs+0J6nx8TBHVo/g
Behavioral task
behavioral1
Sample
536-139-0x0000000010000000-0x0000000010023000-memory.dll
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
536-139-0x0000000010000000-0x0000000010023000-memory.dll
Resource
win10v2004-20221111-en
Malware Config
Extracted
qakbot
404.506
BB14
1675933835
50.20.171.2:443
73.36.196.11:443
12.172.173.82:990
86.225.214.138:2222
67.253.226.137:995
84.108.200.161:443
121.121.100.207:995
86.169.203.116:443
150.107.231.59:2222
201.244.108.183:995
81.111.108.123:443
85.241.180.94:443
37.14.229.220:2222
24.64.112.40:50010
91.68.227.219:443
71.112.212.166:443
82.121.195.187:2222
101.184.161.86:2222
81.157.227.223:2222
103.141.50.102:995
76.80.180.154:995
12.172.173.82:32101
58.247.115.126:995
116.72.250.18:443
136.232.184.134:995
103.123.221.16:443
72.203.216.98:2222
37.56.105.165:995
202.142.98.62:995
81.229.117.95:2222
116.75.63.229:443
86.195.14.72:2222
90.213.146.227:443
86.207.227.152:2222
88.171.156.150:50000
74.92.243.113:50000
213.67.255.57:2222
87.221.215.41:2222
24.228.132.224:2222
2.13.73.146:2222
45.246.235.113:995
103.71.21.107:443
71.31.101.183:443
103.42.86.238:995
62.35.67.88:443
198.2.51.242:993
87.223.82.41:443
92.239.81.124:443
59.28.84.65:443
88.111.182.118:2222
50.68.204.71:995
86.189.211.104:443
87.57.13.215:443
24.64.112.40:2222
217.165.186.116:2222
47.21.51.138:443
136.244.25.165:443
125.99.69.178:443
70.160.80.210:443
109.218.233.202:2222
87.243.146.59:443
89.129.109.27:2222
213.31.90.183:2222
70.59.2.118:443
91.170.115.68:32100
184.176.35.223:2222
27.109.19.90:2078
217.128.200.114:2222
46.24.103.218:2078
93.24.192.142:20
72.80.7.6:995
12.172.173.82:995
208.187.122.74:443
70.77.116.233:443
103.252.7.228:443
50.68.186.195:443
50.68.204.71:443
85.61.165.153:2222
87.149.176.97:443
73.161.176.218:443
12.172.173.82:50001
86.250.12.217:2222
109.149.147.177:2222
176.142.207.63:443
86.130.9.197:2222
92.154.17.149:2222
41.230.210.157:995
24.64.112.40:3389
86.181.41.193:2222
75.143.236.149:443
174.104.184.149:443
76.170.252.153:995
171.97.42.67:443
27.0.48.205:443
83.114.60.6:2222
87.202.101.164:50000
88.126.112.14:50000
35.143.97.145:995
104.35.24.154:443
98.145.23.67:443
98.147.155.235:443
24.64.112.40:61202
114.143.176.234:443
85.231.105.49:2222
181.118.206.65:995
82.127.204.82:2222
86.194.156.14:2222
108.2.111.66:995
156.217.208.137:995
71.52.53.166:443
162.248.14.107:443
45.50.233.214:443
24.239.69.244:443
47.21.51.138:995
73.165.119.20:443
197.204.13.52:443
74.33.196.114:443
50.68.204.71:993
-
salt
SoNuce]ugdiB3c[doMuce2s81*uXmcvP
Targets
-
-
Target
536-139-0x0000000010000000-0x0000000010023000-memory.dmp
-
Size
140KB
-
MD5
ed82fc2003bf5aca46dce000799bf6ab
-
SHA1
6e9f6c3fe5a88e6193e9c33b06a9feec4519abb2
-
SHA256
9f9fed856b2d5e7729425f4a74cd22b3f0bc37535fedb68a581f5c55b35f52c3
-
SHA512
436e113cd90044d1bff9f1aac3c098dbec57994e5cf038b9dfa7d3933f7cf368e8a345c5486061bad661a99c298f0cef18225186f725db16832b8dff50d27204
-
SSDEEP
3072:YKUR+AIznCp7BQCrZJzSWjsdA0Jl0nx8TBfPVo/g:YbIznCVKCtcWjs+0J6nx8TBHVo/g
Score1/10 -