qakbot | 0f29135d6a4a4548f76484b808b69d73c448914f1bf8a52dc5a024ce26b5d17c

General

Target

Khakis.BuettneriaceaeUninformative.dll
Size

836KB
Sample

230410-sz9esafh81
MD5

d159cf90d621edaeb48f41fbde1565fb
SHA1

780b8b2ec96ad8aa1263d293edd598c644503bac
SHA256

0f29135d6a4a4548f76484b808b69d73c448914f1bf8a52dc5a024ce26b5d17c
SHA512

be6717bc1236120dd2daaa925601f7f98be40090efada6b5ee1df9d9387e3fafcc1e2a91577e2c0b0825cf47119c8fd1eddd8b8f0142b698919032274f699b91
SSDEEP

24576:8W3jPG1x9YidgLc4wSeWDYnj3cgKUNtu:GNYkbIe4YnrcPUNtu

Score

10^/10

Malware Config

Extracted

Family

qakbot

Version

404.909

Botnet

BB23

Campaign

1681114726

C2

184.176.35.223:2222

70.112.206.5:443

81.101.185.146:443

72.134.124.16:443

90.55.106.37:2222

176.202.45.209:443

92.9.45.20:2222

23.30.22.225:50003

79.77.142.22:2222

161.142.103.5:995

23.30.173.133:443

86.45.66.141:2222

119.82.123.160:443

12.172.173.82:20

162.248.14.107:443

116.72.250.18:443

23.30.22.225:443

86.98.23.66:443

103.141.50.79:995

71.31.100.192:443

Attributes

salt
SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

- Target
  
  Khakis.BuettneriaceaeUninformative.dll
- Size
  
  836KB
- MD5
  
  d159cf90d621edaeb48f41fbde1565fb
- SHA1
  
  780b8b2ec96ad8aa1263d293edd598c644503bac
- SHA256
  
  0f29135d6a4a4548f76484b808b69d73c448914f1bf8a52dc5a024ce26b5d17c
- SHA512
  
  be6717bc1236120dd2daaa925601f7f98be40090efada6b5ee1df9d9387e3fafcc1e2a91577e2c0b0825cf47119c8fd1eddd8b8f0142b698919032274f699b91
- SSDEEP
  
  24576:8W3jPG1x9YidgLc4wSeWDYnj3cgKUNtu:GNYkbIe4YnrcPUNtu
Score

10^/10

qakbot bb23 1681114726 banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Remote System Discovery

1

T1018

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Extracted

Targets

Qakbot/Qbot

MITRE ATT&CK Matrix ATT&CK v6

Tasks

static1

behavioral1

behavioral2