General

  • Target

    c18720d5822dd99ff6c259c43ef4edd6d7e6f1205f9dc447a0227306e9de685c.bin

  • Size

    272KB

  • Sample

    230505-x44gjshb35

  • MD5

    959f09db04e170fd4d52cf29311a8bce

  • SHA1

    74dc3fb0ac95fce4039e9a1c50682a287d572163

  • SHA256

    14f1433edc768223697e37f714ae372424dc4113c89df073993c302cf3e26cda

  • SHA512

    676f4e9ca46f63458eb30023eb111edf3fade7a92b5396f0f34a88c0c7896c5d4e201f0053e5bb02d814788ed66b4d7fdaab9c790d1f85d3a08ebeb9e8b99d59

  • SSDEEP

    6144:WZy7xmFaYoN2FlF5TrIymKNDrZlNzYkigclOsx:uYx+atNq5TRlFNigux

Malware Config

Extracted

Family

qakbot

Version

404.1026

Botnet

BB25

Campaign

1682409935

C2

96.56.197.26:2222

151.30.34.144:443

217.165.239.223:443

91.82.4.46:443

151.213.66.34:995

81.111.108.123:443

88.171.156.150:50000

92.149.250.113:2222

92.189.214.236:2222

103.123.223.130:443

67.10.2.240:995

70.112.206.5:443

86.225.214.138:2222

172.248.42.122:443

147.219.4.194:443

24.139.11.137:443

74.92.243.115:50000

198.2.51.242:993

75.98.154.19:443

92.239.81.124:443

Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

    • Target

      c18720d5822dd99ff6c259c43ef4edd6d7e6f1205f9dc447a0227306e9de685c

    • Size

      498KB

    • MD5

      37197c59a30c7f71637baa8306b3c62b

    • SHA1

      513803ac5522f55bd2f07895be504e21bd09b0f0

    • SHA256

      c18720d5822dd99ff6c259c43ef4edd6d7e6f1205f9dc447a0227306e9de685c

    • SHA512

      65b6993eabcc82ea4a3140020344435351499f81d172d9c0dce0a336e53dbff07b6e2ccc874f0f775f49a80b3c38491320614e69b57971deb84e0cbec0735bee

    • SSDEEP

      6144:GzsetYSi0K8xwAXr/fUT7td4HCp6hInogO5cJN2W3MnBJW2WraDOhTKnOF8QAZaR:FeaefiP3O2sK2WraDOhel0WVvKX5H5N

MITRE ATT&CK Enterprise v6

Tasks