qakbot | b122fcf8be633245b36f8cc864bc115b0f9aaa06486e16dd620333c88cfbf1b3

General

Target

n4B82OsK.png
Size

434KB
Sample

230214-rpvyzaea55
MD5

2349a28eb53ad73503e3396e1c8c723c
SHA1

aed38e62e119b6fdc7aecb5ddb726f35ccd07468
SHA256

b122fcf8be633245b36f8cc864bc115b0f9aaa06486e16dd620333c88cfbf1b3
SHA512

670b9a15f907413b92d11193b74f829d2d6782e239d9ef2e1aadf8ccbc290fdeace9ae57e7d2997d44d6a309a093419c2dd1bfc071bc3c74f2316dbadb83422c
SSDEEP

12288:rJZ701RXT1BaB4Irm8VGf9hyI8K9HGgnA:VZ701RXT1wB4Irz0f9hND

Score

10^/10

Malware Config

Extracted

Family

qakbot

Version

404.506

Botnet

azd

Campaign

1676370608

C2

85.59.61.52:2222

216.228.41.244:2222

174.58.146.57:443

103.42.86.110:995

147.219.4.194:443

89.32.157.195:995

76.80.180.154:995

79.67.165.149:995

71.31.101.183:443

198.2.51.242:993

88.111.182.118:2222

72.203.216.98:2222

72.80.7.6:995

12.172.173.82:32101

50.68.204.71:995

209.142.97.83:995

82.121.195.187:2222

81.229.117.95:2222

171.96.205.252:443

37.14.229.220:2222

Attributes

salt
SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

- Target
  
  n4B82OsK.png
- Size
  
  434KB
- MD5
  
  2349a28eb53ad73503e3396e1c8c723c
- SHA1
  
  aed38e62e119b6fdc7aecb5ddb726f35ccd07468
- SHA256
  
  b122fcf8be633245b36f8cc864bc115b0f9aaa06486e16dd620333c88cfbf1b3
- SHA512
  
  670b9a15f907413b92d11193b74f829d2d6782e239d9ef2e1aadf8ccbc290fdeace9ae57e7d2997d44d6a309a093419c2dd1bfc071bc3c74f2316dbadb83422c
- SSDEEP
  
  12288:rJZ701RXT1BaB4Irm8VGf9hyI8K9HGgnA:VZ701RXT1wB4Irz0f9hND
Score

10^/10

qakbot azd 1676370608 banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Command-Line Interface

1

T1059

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Remote System Discovery

1

T1018

System Information Discovery

1

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Extracted

Targets

Qakbot/Qbot

MITRE ATT&CK Matrix ATT&CK v6

Tasks

static1

behavioral1

behavioral2