General

  • Target

    Malware.zip

  • Size

    363KB

  • Sample

    230223-vrw6laae5t

  • MD5

    ac3bd5300f9dc4643e299007d8fec7b3

  • SHA1

    1daf357af0c3b23d3b4536fe522264db54bdeb5f

  • SHA256

    2cd87e7538af8f7132498e8483ab19e83f52a017d4daa49fefa7ee88b3aa3e91

  • SHA512

    c6d97c10caf16c839fea6415b389b9ca09b388d20b057b7e48b1094c553638d14b52f1802c2cee195f9fac4e5dce7b84418f7d693055ce93b17c3f9091f738b0

  • SSDEEP

    6144:OaIeGYKCP1qY1DiI7Noots71EbmY25h8V02Wk4fgvttEApihLocOvj5D+LO+5Cb8:OaXh3dzOwS1G25h8G2W3gb9piTsj56q2

Malware Config

Extracted

Family

qakbot

Version

404.9

Botnet

BB16

Campaign

1677046917

C2

47.21.51.138:443

72.80.7.6:50003

82.127.204.82:2222

49.175.72.56:443

201.244.108.183:995

122.184.143.82:443

102.156.253.86:443

74.58.71.237:443

47.21.51.138:995

77.86.98.236:443

71.31.101.183:443

136.232.184.134:995

86.225.214.138:2222

95.242.101.251:995

109.11.175.42:2222

90.78.138.217:2222

184.176.35.223:2222

35.143.97.145:995

202.186.177.88:443

114.79.180.14:995

Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

    • Target

      RunDLL-1.bat

    • Size

      29B

    • MD5

      ba6e4e22313d1c7c90dccc4fa9b51fbf

    • SHA1

      b718f876ef3e92f62a8907ad8d0a5f659842caf2

    • SHA256

      3207519ef6572bfd2a1ef9850f8555a57a05b40810ec6a208279ca060aaa5f33

    • SHA512

      823fb03d899d5476477e99766ad6a2194386c9b080f558857df4514a91d3a87918e79f8649dc4e49c2f93241d6d324955fcb9ac6f7f6432f4343a8adc9e9b0ad

    • Target

      decoded.dll

    • Size

      904KB

    • MD5

      e0efb2f4fb3b2bf3b8e33fe3889d2f21

    • SHA1

      663af37face1d6c6076b13798d8fbb342bb2756a

    • SHA256

      64f7553625b504ff63a675ac17646280c249c9ba4152702c269bec3d0975e8ff

    • SHA512

      a8cf277feaaa2580e8b67c8fade1d5e745bdac999581f0ade28234a825a09fc6a8fce56235fdf626109d9a52208f08b2eb36e1d3dd276f846ed51e18e1054231

    • SSDEEP

      12288:rrhxV/xG39fx1jGrJySlVB7qZcsyc1m41OSoMhKmkxgt9peTI95kKZPL+Hmmn:xxRQfXsy0BTP4gSoMZttvWQ5kb

    Score
    3/10

MITRE ATT&CK Matrix

Tasks