General
-
Target
x.zip
-
Size
235KB
-
Sample
230214-rprxbaea52
-
MD5
7142c4d6a67a1237beadce3a038b5a1d
-
SHA1
c768ccf3e594ca66b47f82e1f2fadf944d5d3fd3
-
SHA256
df0376db0a25a450ede35e98198a5c3a0effee46c721f6ba2f8242a48633aa18
-
SHA512
6b5db202135911d890069d30c7db2cd2b1f2fef607607c638b3cfa4fa7964dc52c64b306a0666d7fef6ace937ca60340d1239ea96b51b08ac7a771ef0048e027
-
SSDEEP
6144:dL5227LoH8EOt94TURSi9mx7IK66yssIAdCa:ZY2gcEW94TNTxsIAdr
Static task
static1
Behavioral task
behavioral1
Sample
x.bat
Resource
win7-20221111-en
Malware Config
Extracted
qakbot
404.506
BB14
1676025438
181.118.206.65:995
35.143.97.145:995
47.149.95.10:443
73.29.92.128:443
104.35.24.154:443
98.145.23.67:443
70.51.132.216:2222
171.97.42.67:443
24.64.112.40:61202
182.180.105.242:443
24.64.112.40:2222
76.170.252.153:995
88.126.94.4:50000
83.114.60.6:2222
73.223.248.31:443
86.161.143.19:2222
216.228.41.244:2222
86.202.48.142:2222
103.42.86.238:995
88.126.112.14:50000
188.83.248.76:443
82.127.204.82:2222
190.206.75.58:2222
92.239.81.124:443
114.143.176.234:443
71.52.53.166:443
85.85.34.201:993
81.151.102.224:443
90.104.22.28:2222
12.172.173.82:465
47.34.30.133:443
162.248.14.107:443
12.172.173.82:995
45.50.233.214:443
24.239.69.244:443
47.21.51.138:995
73.165.119.20:443
91.170.115.68:32100
90.162.45.154:2222
197.204.202.147:443
74.33.196.114:443
217.128.200.114:2222
50.68.204.71:993
91.254.132.23:443
12.172.173.82:20
2.99.47.198:2222
41.99.188.5:443
84.35.26.14:995
121.121.100.207:995
58.186.75.42:443
172.248.42.122:443
156.217.208.137:995
109.11.175.42:2222
12.172.173.82:990
69.119.123.159:2222
89.79.229.50:443
208.187.122.74:443
24.71.120.191:443
183.87.163.165:443
123.3.240.16:995
95.94.41.77:2222
86.180.74.35:2222
188.116.62.165:995
2.82.8.80:443
173.18.126.3:443
67.187.130.101:443
12.172.173.82:2087
114.79.180.14:995
86.236.114.212:2222
86.196.12.21:2222
201.244.108.183:995
202.142.98.62:443
50.20.171.2:443
73.36.196.11:443
86.225.214.138:2222
84.108.200.161:443
87.221.197.113:2222
45.246.235.113:995
71.112.212.166:443
86.169.203.116:443
113.183.223.241:443
27.109.19.90:2078
69.133.162.35:443
24.9.220.167:443
74.92.243.113:50000
58.247.115.126:995
72.203.216.98:2222
103.71.21.107:443
98.37.25.99:443
71.31.101.183:443
198.2.51.242:993
88.111.182.118:2222
50.68.204.71:995
116.75.63.198:443
67.10.175.47:2222
76.80.180.154:995
87.223.82.41:443
12.172.173.82:32101
85.7.61.22:2222
59.28.84.65:443
82.121.195.187:2222
213.67.255.57:2222
88.171.156.150:50000
37.56.105.165:995
91.68.227.219:443
46.24.103.218:2078
92.154.45.81:2222
81.229.117.95:2222
72.80.7.6:995
161.142.105.32:995
116.72.250.18:443
103.141.50.102:995
103.252.7.228:443
202.142.98.62:995
83.7.54.170:443
92.27.86.48:2222
70.160.80.210:443
86.96.72.139:2222
176.142.207.63:443
-
salt
SoNuce]ugdiB3c[doMuce2s81*uXmcvP
Targets
-
-
Target
x.bat
-
Size
24B
-
MD5
4c761c8d5cfa48b9e24ca8759aa5bd6f
-
SHA1
aa0ad683e37d9570dacd74734c2866c480d78547
-
SHA256
4936f4877eb907b0053d88c90e3b4a277740038fcf7fa87965d4342fb51515b3
-
SHA512
3d4fd1a28012a0c5de552dffa1dbe7e399be411273cc7ad5a174f20a705a56ba71c487bdfce1ab4576041a3389ad8827b9d0500b95ab8dca247fba42450cadd9
-