General

  • Target

    Ungripping.dll

  • Size

    881KB

  • Sample

    230320-v5jsesef72

  • MD5

    328c7bd717baffb021419154dca563d8

  • SHA1

    2ce3de50a614ef7937dcce8a2c13d5de5e68b48c

  • SHA256

    293c6bb43cc267a6f0dd9f2da1d62144ddb63159a8f93a2ea2c963e0e44d87f4

  • SHA512

    6f66c3dca37d2909b9144136311777027a5417a49ff901753733b558066ee7058687730ecb449ad37ef103422535843b3a69236fe74c71eab158ad0004e6a7ce

  • SSDEEP

    24576:V9sT4ppNP7Empue12E35Tdkq0aljWrHnl5oPhepzGIrx1lA0iO1PTIsrq:YQbD0nEZAl/iOKsr

Malware Config

Extracted

Family

qakbot

Version

404.450

Botnet

BB20

Campaign

1679248733

C2

75.143.236.149:443

80.42.186.99:2222

50.68.204.71:993

47.32.78.150:443

50.68.204.71:443

90.165.109.4:2222

178.152.121.81:443

78.69.251.252:2222

86.45.66.141:2222

91.68.227.219:443

80.1.152.201:443

213.91.235.146:443

198.2.51.242:993

92.154.17.149:2222

174.4.89.3:443

86.191.9.6:995

2.14.137.60:2222

93.147.134.85:443

92.149.250.113:2222

73.165.119.20:443

Targets

    • Target

      Ungripping.dll

    • Size

      881KB

    • MD5

      328c7bd717baffb021419154dca563d8

    • SHA1

      2ce3de50a614ef7937dcce8a2c13d5de5e68b48c

    • SHA256

      293c6bb43cc267a6f0dd9f2da1d62144ddb63159a8f93a2ea2c963e0e44d87f4

    • SHA512

      6f66c3dca37d2909b9144136311777027a5417a49ff901753733b558066ee7058687730ecb449ad37ef103422535843b3a69236fe74c71eab158ad0004e6a7ce

    • SSDEEP

      24576:V9sT4ppNP7Empue12E35Tdkq0aljWrHnl5oPhepzGIrx1lA0iO1PTIsrq:YQbD0nEZAl/iOKsr

MITRE ATT&CK Matrix

Tasks