General

  • Target

    4220-138-0x0000000010000000-0x0000000010023000-memory.dmp

  • Size

    140KB

  • Sample

    230222-wldmqsef6z

  • MD5

    ef7789aa0087f6dfcc3897f2338d3d19

  • SHA1

    23c9d9b79f738eb5d78d9568db74bdaf29d91f3b

  • SHA256

    b6ec2d9eb3de1405d921ce7485c56efae2a7081d40840fe2c808772e4588bb5d

  • SHA512

    61490f8b39feae9fc5a2c9550241ed43711b11cc5534a1dda00c687bd78c15d0dac1e215e3f933b026aab25b0d1be527ce8d57a4065294c5c94ab66d10b66991

  • SSDEEP

    3072:lbZACs0bYJJZAGL6a+J5iLsvz+4rgCBojVXwmqgAeJzjnPwTBfPLfInLR:lbd4JZAcFC8kVeJ/nPwTBHcnV

Score
10/10

Malware Config

Extracted

Family

qakbot

Version

404.9

Botnet

BB16

Campaign

1677046917

C2

47.21.51.138:443

72.80.7.6:50003

82.127.204.82:2222

49.175.72.56:443

201.244.108.183:995

122.184.143.82:443

102.156.253.86:443

74.58.71.237:443

47.21.51.138:995

77.86.98.236:443

71.31.101.183:443

136.232.184.134:995

86.225.214.138:2222

95.242.101.251:995

109.11.175.42:2222

90.78.138.217:2222

184.176.35.223:2222

35.143.97.145:995

202.186.177.88:443

114.79.180.14:995

Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

    • Target

      4220-138-0x0000000010000000-0x0000000010023000-memory.dmp

    • Size

      140KB

    • MD5

      ef7789aa0087f6dfcc3897f2338d3d19

    • SHA1

      23c9d9b79f738eb5d78d9568db74bdaf29d91f3b

    • SHA256

      b6ec2d9eb3de1405d921ce7485c56efae2a7081d40840fe2c808772e4588bb5d

    • SHA512

      61490f8b39feae9fc5a2c9550241ed43711b11cc5534a1dda00c687bd78c15d0dac1e215e3f933b026aab25b0d1be527ce8d57a4065294c5c94ab66d10b66991

    • SSDEEP

      3072:lbZACs0bYJJZAGL6a+J5iLsvz+4rgCBojVXwmqgAeJzjnPwTBfPLfInLR:lbd4JZAcFC8kVeJ/nPwTBHcnV

    Score
    1/10

MITRE ATT&CK Matrix

Tasks