qakbot | 42f715467bf6f84d2af2edd6c7b236c5aa639975d3f6a0ab11a2ea090f5b110e

General

Target

0022bbba1009cfeba795429be5ab33e0f0dd40f5.bin
Size

336KB
Sample

230320-vzvbzagf7y
MD5

6598a16917b94c9de9e0a2f752d199f2
SHA1

0022bbba1009cfeba795429be5ab33e0f0dd40f5
SHA256

42f715467bf6f84d2af2edd6c7b236c5aa639975d3f6a0ab11a2ea090f5b110e
SHA512

a9672a07d15b709922c3a9c262152f4229845467adba556ad69a018ba07a0f9263f4da54aec48541f5564207c3b6f0a81928fdc05020acee9384b41b065ae1de
SSDEEP

6144:iZDoLpZsgyjZwy28zBitv6O1ONm9aHkNnOmewcV56xKM:YDoLphEwy289it5OvHGOHH6

Score

10^/10

Malware Config

Extracted

Family

qakbot

Version

404.450

Botnet

BB19

Campaign

1679045891

C2

202.142.98.62:443

50.68.204.71:995

81.229.117.95:2222

103.140.174.19:2222

47.34.30.133:443

76.170.252.153:995

183.87.163.165:443

81.133.163.79:2222

83.92.85.93:443

85.241.180.94:443

144.64.226.144:443

76.80.180.154:995

103.42.86.110:995

12.172.173.82:995

24.117.237.157:443

35.143.97.145:995

91.254.229.61:443

74.58.71.237:443

64.237.245.195:443

45.50.233.214:443

Targets

- Target
  
  0022bbba1009cfeba795429be5ab33e0f0dd40f5.bin
- Size
  
  336KB
- MD5
  
  6598a16917b94c9de9e0a2f752d199f2
- SHA1
  
  0022bbba1009cfeba795429be5ab33e0f0dd40f5
- SHA256
  
  42f715467bf6f84d2af2edd6c7b236c5aa639975d3f6a0ab11a2ea090f5b110e
- SHA512
  
  a9672a07d15b709922c3a9c262152f4229845467adba556ad69a018ba07a0f9263f4da54aec48541f5564207c3b6f0a81928fdc05020acee9384b41b065ae1de
- SSDEEP
  
  6144:iZDoLpZsgyjZwy28zBitv6O1ONm9aHkNnOmewcV56xKM:YDoLphEwy289it5OvHGOHH6
Score

10^/10

qakbot bb19 1679045891 banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Qakbot/Qbot

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2