qakbot | 03f2a3543dbb6f663838d64550c2e7d17c06ac1a12772d66304480215e530540

General

Target

a16db0d2025dff39a4a0de4071ce0e73c6810ab497453ad67c16ba0980385f60_explorer.exe_0x5a0000-0x21000.bin
Size

132KB
Sample

230320-yrrsnafb78
MD5

e6ddbc30e5c5c549483158b7280d699d
SHA1

ee54ed8e3fdb6f7d4099cb8661b1f419f4ffe378
SHA256

03f2a3543dbb6f663838d64550c2e7d17c06ac1a12772d66304480215e530540
SHA512

9562415b5785c86f79971de605f13d54999dc3d37ec649f743703785287a1942c997b75652e207b62daa3f6c826ad8a94dd9adb5b76f0cb5810da79c04863e68
SSDEEP

1536:SSEJ2QcCJjqUkL1HatV5MDsZgxx04bv+NhZw+t9HNDqFXrv4iCnToIf7IOuh7tAT:vEPcCdqGMDsZ+vDOuFbhOTBftuh7Ow

Score

10^/10

Malware Config

Extracted

Family

qakbot

Version

401.51

Botnet

abc104

Campaign

1606818862

C2

79.119.124.237:443

87.218.53.206:2222

181.169.88.203:443

82.12.157.95:995

94.49.188.240:443

46.124.107.124:6881

86.122.248.164:2222

83.202.68.220:2222

79.129.216.215:2222

37.21.231.245:995

47.187.49.3:2222

2.90.33.130:443

149.28.98.196:995

149.28.99.97:443

45.63.107.192:995

149.28.98.196:2222

45.63.107.192:2222

74.73.27.35:443

149.28.98.196:443

144.202.38.185:2222

Targets

- Target
  
  a16db0d2025dff39a4a0de4071ce0e73c6810ab497453ad67c16ba0980385f60_explorer.exe_0x5a0000-0x21000.bin
- Size
  
  132KB
- MD5
  
  e6ddbc30e5c5c549483158b7280d699d
- SHA1
  
  ee54ed8e3fdb6f7d4099cb8661b1f419f4ffe378
- SHA256
  
  03f2a3543dbb6f663838d64550c2e7d17c06ac1a12772d66304480215e530540
- SHA512
  
  9562415b5785c86f79971de605f13d54999dc3d37ec649f743703785287a1942c997b75652e207b62daa3f6c826ad8a94dd9adb5b76f0cb5810da79c04863e68
- SSDEEP
  
  1536:SSEJ2QcCJjqUkL1HatV5MDsZgxx04bv+NhZw+t9HNDqFXrv4iCnToIf7IOuh7tAT:vEPcCdqGMDsZ+vDOuFbhOTBftuh7Ow
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2