General

  • Target

    536-139-0x0000000010000000-0x0000000010023000-memory.dmp

  • Size

    140KB

  • Sample

    230210-t7a3maah26

  • MD5

    ed82fc2003bf5aca46dce000799bf6ab

  • SHA1

    6e9f6c3fe5a88e6193e9c33b06a9feec4519abb2

  • SHA256

    9f9fed856b2d5e7729425f4a74cd22b3f0bc37535fedb68a581f5c55b35f52c3

  • SHA512

    436e113cd90044d1bff9f1aac3c098dbec57994e5cf038b9dfa7d3933f7cf368e8a345c5486061bad661a99c298f0cef18225186f725db16832b8dff50d27204

  • SSDEEP

    3072:YKUR+AIznCp7BQCrZJzSWjsdA0Jl0nx8TBfPVo/g:YbIznCVKCtcWjs+0J6nx8TBHVo/g

Score
10/10

Malware Config

Extracted

Family

qakbot

Version

404.506

Botnet

BB14

Campaign

1675933835

C2

50.20.171.2:443

73.36.196.11:443

12.172.173.82:990

86.225.214.138:2222

67.253.226.137:995

84.108.200.161:443

121.121.100.207:995

86.169.203.116:443

150.107.231.59:2222

201.244.108.183:995

81.111.108.123:443

85.241.180.94:443

37.14.229.220:2222

24.64.112.40:50010

91.68.227.219:443

71.112.212.166:443

82.121.195.187:2222

101.184.161.86:2222

81.157.227.223:2222

103.141.50.102:995

Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

    • Target

      536-139-0x0000000010000000-0x0000000010023000-memory.dmp

    • Size

      140KB

    • MD5

      ed82fc2003bf5aca46dce000799bf6ab

    • SHA1

      6e9f6c3fe5a88e6193e9c33b06a9feec4519abb2

    • SHA256

      9f9fed856b2d5e7729425f4a74cd22b3f0bc37535fedb68a581f5c55b35f52c3

    • SHA512

      436e113cd90044d1bff9f1aac3c098dbec57994e5cf038b9dfa7d3933f7cf368e8a345c5486061bad661a99c298f0cef18225186f725db16832b8dff50d27204

    • SSDEEP

      3072:YKUR+AIznCp7BQCrZJzSWjsdA0Jl0nx8TBfPVo/g:YbIznCVKCtcWjs+0J6nx8TBHVo/g

    Score
    1/10

MITRE ATT&CK Matrix

Tasks