qakbot | fe4d2ebc920e60116b039236f07e45a9203fce4eaf7e5182c0a8610f49c7397c

General

Target

555555.dat
Size

462KB
Sample

230413-wya3dadc63
MD5

fd4829b31ddba9d86b755d94c1bd9d18
SHA1

51888e485511fe7db278715c72da0bd64f70bc89
SHA256

fe4d2ebc920e60116b039236f07e45a9203fce4eaf7e5182c0a8610f49c7397c
SHA512

5b7d2cad80f6b6d57984fd9ecff170e023a06f316228aac961ff081965d9a9af19692e345f3cb093d75308d679c31892f735602db557ed97c514b1d39c69ae6d
SSDEEP

12288:eAsKWT98cqSemKRLh0P4Fr8qFu8wPchGF4A7J7tTFJMvEPRrUxHYjKqNZrk7UazG:eJMvArUx4jfNko9ga

Score

10^/10

Malware Config

Extracted

Family

qakbot

Version

404.919

Botnet

obama252

Campaign

1681377757

C2

70.28.50.223:2083

64.121.161.102:443

95.60.243.84:995

70.28.50.223:1194

49.245.95.124:2222

184.153.132.82:443

67.219.197.94:443

174.4.89.3:443

70.28.50.223:3389

213.91.235.146:443

75.115.14.189:443

202.142.98.62:443

70.64.77.115:443

70.28.50.223:2087

103.123.223.141:443

50.68.204.71:993

81.229.117.95:2222

72.134.124.16:443

76.170.252.153:995

85.245.221.87:2078

Attributes

salt
SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

- Target
  
  555555.dat
- Size
  
  462KB
- MD5
  
  fd4829b31ddba9d86b755d94c1bd9d18
- SHA1
  
  51888e485511fe7db278715c72da0bd64f70bc89
- SHA256
  
  fe4d2ebc920e60116b039236f07e45a9203fce4eaf7e5182c0a8610f49c7397c
- SHA512
  
  5b7d2cad80f6b6d57984fd9ecff170e023a06f316228aac961ff081965d9a9af19692e345f3cb093d75308d679c31892f735602db557ed97c514b1d39c69ae6d
- SSDEEP
  
  12288:eAsKWT98cqSemKRLh0P4Fr8qFu8wPchGF4A7J7tTFJMvEPRrUxHYjKqNZrk7UazG:eJMvArUx4jfNko9ga
Score

10^/10

qakbot obama252 1681377757 banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Remote System Discovery

1

T1018

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Qakbot/Qbot

MITRE ATT&CK Matrix ATT&CK v6

Tasks

static1

behavioral1

behavioral2