Overview

overview

10

Static

static

10

1984-54-0x...ry.dll

windows7-x64

1

1984-54-0x...ry.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    1984-54-0x0000000000250000-0x0000000000273000-memory.dmp

  • Size

    140KB

  • MD5

    dd72978453f9143c9db59fc948119cf3

  • SHA1

    9ae8ac9334c8917affdd926a9b187802d1bec802

  • SHA256

    c365e05afe176bfbaa664a8bc8776b8af2dff1d175a772e2d04a83d6d49a1bd0

  • SHA512

    2db3c7a3022b8d8a999fcabece55b173e913810f929235198aa2b7b4e9e05f108ccf1edd51221641054733335b3f7dabf85e34c792c80fd91fd5a7c2413879ff

  • SSDEEP

    3072:TB8SCzdIlpI1la6oPDAgJeKxLwTBfvGnEnsKm:TlpIlsPkgJ/xLwTBnGGsK

Score
10/10
bb181678346091qakbot

Malware Config

Extracted

Family

qakbot

Version

404.226

Botnet

BB18

Campaign

1678346091

C2

114.143.176.235:443

92.154.17.149:2222

2.14.45.117:2222

84.108.200.161:443

109.11.175.42:2222

88.126.94.4:50000

87.202.101.164:50000

50.68.204.71:995

49.245.82.178:2222

12.172.173.82:32101

190.11.198.76:443

79.67.165.149:995

115.87.227.49:443

84.215.202.22:443

118.250.110.98:995

66.131.25.6:443

80.1.152.201:443

198.2.51.242:993

151.48.158.236:443

50.68.204.71:993
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Signatures

Files

  • 1984-54-0x0000000000250000-0x0000000000273000-memory.dmp
    .dll windows x86


    Headers

    Sections