Overview

overview

10

Static

static

10

5752-157-0...ry.dll

windows7-x64

1

5752-157-0...ry.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    5752-157-0x0000000010000000-0x0000000010023000-memory.dmp

  • Size

    140KB

  • MD5

    f4ec78c247feecd15cad650437ebe9e9

  • SHA1

    5709452d99c83b11659abba04a957fe7150552d0

  • SHA256

    0a9f136171f69b9d86c713db9a9edc69b3bf06e2bf69fcc7ded343a09105a146

  • SHA512

    119a32bde3ccf5670c95491ae55f1ba7cdb8cbf9a7f7703e74e785f459b8d3a239a2dcc4b85f86936332c9a0dd405f8a71af50bc3214dfc46421a6ec249f6bf2

  • SSDEEP

    3072:YKUR+AIznCp7BQCrZJzSWjsdA0Jl0nI8TBfPVo/S:YbIznCVKCtcWjs+0J6nI8TBHVo/S

Score
10/10
bb151676282502qakbot

Malware Config

Extracted

Family

qakbot

Version

404.506

Botnet

BB15

Campaign

1676282502

C2

81.229.117.95:2222

90.78.138.217:2222

86.236.114.212:2222

78.130.215.67:443

182.180.105.242:443

78.16.206.181:443

27.0.48.233:443

37.14.229.220:2222

202.186.177.88:443

75.143.236.149:443

122.184.143.82:443

24.64.112.40:3389

183.87.163.165:443

162.248.14.107:443

87.149.176.97:443

194.166.93.69:443

75.98.154.19:443

70.77.116.233:443

71.112.212.166:443

27.99.45.237:2222
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Signatures

Files

  • 5752-157-0x0000000010000000-0x0000000010023000-memory.dmp
    .dll windows x86


    Headers

    Sections