Overview

overview

10

Static

static

10

2012-54-0x...ry.dll

windows7-x64

1

2012-54-0x...ry.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    2012-54-0x0000000010000000-0x0000000010024000-memory.dmp

  • Size

    144KB

  • MD5

    62221ba4e202934677eebb0922b39368

  • SHA1

    2c06ddd06f33aa5eeca8cd3f535489d72577b172

  • SHA256

    b86c2d9ab4a6ddebc1e8d0ab1905ff4c39a8e21a6f0f59457ee681ba9387aeaf

  • SHA512

    dc5702a2389f7f8fc4dd0769ace37cf41e89db03a14ae47d2dc093d5a591f6e084e5d3d758c72eca32ed2c49a7618b837a07771944c55a96437615453a6fc89b

  • SSDEEP

    3072:TuUtexa1mQ4GH6MlnzXFAEJjsVVHS8TBffGWpn8:T3teP/GaMlT2EJ4VVHS8TB3

Score
10/10
obama2501681195951qakbot

Malware Config

Extracted

Family

qakbot

Version

404.919

Botnet

obama250

Campaign

1681195951

C2

71.38.155.217:443

81.101.185.146:443

86.195.14.72:2222

112.222.83.147:6881

94.5.98.77:443

87.243.146.59:443

190.78.69.250:2222

50.68.204.71:995

184.182.66.109:443

70.28.50.223:32100

83.114.60.6:2222

89.129.109.27:2222

80.12.88.148:2222

74.66.134.24:443

86.130.9.222:2222

12.172.173.82:21

73.36.196.11:443

12.172.173.82:465

186.64.67.25:443

2.36.64.159:2078
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Signatures

Files

  • 2012-54-0x0000000010000000-0x0000000010024000-memory.dmp
    .dll windows x86


    Headers

    Sections