General

  • Target

    Friendlily.Allineate.dll

  • Size

    917KB

  • Sample

    230505-plz3eacc9x

  • MD5

    27dadd5abdbb4c80da96453920d15c93

  • SHA1

    302444ecd032ca1d3e06fad76a4723dbe89e8fe8

  • SHA256

    ed9e031361d49d4507191e7279f2862290d9e3894c4dff4a0776be1e19f1c4d7

  • SHA512

    bdd0f516212e7d9f12e695e42312827399896df41aac0fa235d901128db4290a4d1dc275d696634b61f2da0b1564337b6c3cdd5162399ab4c7e2a44c0c72a17d

  • SSDEEP

    24576:xHA2XMYABs772W/8vLj/9sgR+OVnh8gt42vCkzeztwPOfQWyBZPPdhbBF91Xe9a:FMYABC8vLj/2jA8gxZPPdhbBP1O9a

Malware Config

Extracted

Family

qakbot

Version

404.1035

Botnet

BB26

Campaign

1683279184

C2

27.109.19.90:2078

109.56.235.133:443

92.20.204.198:2222

98.145.23.67:443

50.68.204.71:995

151.55.186.41:443

12.172.173.82:21

70.28.50.223:3389

94.59.122.53:2222

12.172.173.82:32101

24.206.27.39:443

91.169.12.198:32100

12.172.173.82:993

2.82.8.80:443

104.35.24.154:443

5.30.216.183:443

50.68.204.71:443

12.172.173.82:995

103.140.174.20:2222

173.88.135.179:443

Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

    • Target

      Friendlily.Allineate.dll

    • Size

      917KB

    • MD5

      27dadd5abdbb4c80da96453920d15c93

    • SHA1

      302444ecd032ca1d3e06fad76a4723dbe89e8fe8

    • SHA256

      ed9e031361d49d4507191e7279f2862290d9e3894c4dff4a0776be1e19f1c4d7

    • SHA512

      bdd0f516212e7d9f12e695e42312827399896df41aac0fa235d901128db4290a4d1dc275d696634b61f2da0b1564337b6c3cdd5162399ab4c7e2a44c0c72a17d

    • SSDEEP

      24576:xHA2XMYABs772W/8vLj/9sgR+OVnh8gt42vCkzeztwPOfQWyBZPPdhbBF91Xe9a:FMYABC8vLj/2jA8gxZPPdhbBP1O9a

MITRE ATT&CK Enterprise v6

Tasks