qakbot | 5de2498a04e12c1d8421788570d73eed7ef95a6c29d738cd0488cb5275157ebc

General

Target

Malware.zip
Size

191KB
Sample

230316-c1bbdage62
MD5

4a4669a5b4c8a126be98994d8c4a449c
SHA1

74944c2ffacbf80c4cec63fd260363637e19c605
SHA256

5de2498a04e12c1d8421788570d73eed7ef95a6c29d738cd0488cb5275157ebc
SHA512

9ec76752f4a63229efb0a4f37f242befb2c663a8234afec437f2712d8cc8564da1a0bfab2d98de141539d957214958b0d42211a8dabb13c7e63b660a472c7a29
SSDEEP

3072:JFpK5yQt6r/cWOsHEgJaOnqNWo4LDRtveiWISRUa0BfGCRrnzBZheeQubDFaysC6:PI5yesOskgJaDNWnDLvfWzERfpeAbDFU

Score

10^/10

Malware Config

Extracted

Family

qakbot

Version

404.263

Botnet

BB19

Campaign

1678819882

C2

162.248.14.107:443

89.32.159.107:995

50.68.186.195:443

50.68.204.71:443

24.69.84.237:443

92.239.81.124:443

149.74.159.67:2222

176.202.46.81:443

2.82.8.80:443

72.203.216.98:2222

73.22.121.210:443

190.218.125.145:443

76.71.137.91:2222

81.158.112.20:2222

190.191.35.122:443

12.172.173.82:993

98.145.23.67:443

12.172.173.82:22

37.186.55.60:2222

73.161.176.218:443

Attributes

salt
SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

- Target
  
  RunDLL-1.bat
- Size
  
  50B
- MD5
  
  0f96c350e1bf7660b23f9e43696e30f4
- SHA1
  
  e4b2700d52cb682c0b410b2b0a34627448394295
- SHA256
  
  6b12804ae6e5b9e9429394a3b0df80a4188e870ca087a12f8f5e579c703a6e63
- SHA512
  
  96ab0e1c5d56cba6bd5226862998417f62bc924e7e4a1dc205abd91f31026dafc395c8ee1d6d4dccd7d2024aac97405ac644672b4e36ed527f639a0499543885
Score

10^/10

qakbot bb19 1678819882 banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2
- Target
  
  superexportMicrogravimetric.dll
- Size
  
  333KB
- MD5
  
  fab9f38606e0ce465fefa4061b4dddaa
- SHA1
  
  5ea271c6688f8aae84146e7456aeb20abde0bf83
- SHA256
  
  d33601bac1fb8c11f659f102505a2e0e5280bf1fc7b525e57532488a53d2e2f7
- SHA512
  
  4b5e2b67059a822d61d78b063613d209d0d79d7a61b86bdbbf688e4c1aafee328dde6d2463469a1e3a6da660f8fdefa009e0348e9399a3d902b3436386072789
- SSDEEP
  
  6144:1aaVzaA4R+aU/P/IvTDp3ZZ99GSrtMhsNW9BUW/aSFGMReiDhKRIbGjpDY0RppeO:O+aU/P/IvTDp3ZZ99RrtMU2GSYIajK8J
Score

3^/10
behavioral3 behavioral4

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Qakbot/Qbot

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4