Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

x.dll

windows7-x64

10

x.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    x.dll

  • Size

    899KB

  • Sample

    230510-pzr9qaga66

  • MD5

    87c220bee9ba46cf06594dd67d681745

  • SHA1

    952af441f0eca8a6fed01ae5380622c859f3ac89

  • SHA256

    7693ae43bff73010d229d64c4479ed8fabb5dcaf717a3d3b00b54a934511e180

  • SHA512

    5f77ee3a00dc6738b06975e574df13131b75416350629cc0dd5b57a0055854a7f3c4aa7f5175383e9e3851544e64b0e0c7ddd5d3298bafc0631cf73ed728d338

  • SSDEEP

    24576:sHA2XMYABs772W/8vLc/9sgR+OVnh8gt42vCkzeztwPOfQWy5UuxVFLqsu:UMYABC8vLc/2jA8gpUuxVFLqh

Score
10/10
qakbotobama2611683268508bankerstealertrojan

Malware Config

Extracted

Family

qakbot

Version

404.1035

Botnet

obama261

Campaign

1683268508

C2

174.4.89.3:443

23.30.173.133:443

70.51.136.238:2222

68.173.170.110:8443

47.21.51.138:443

70.64.77.115:443

76.16.49.134:443

64.121.161.102:443

108.190.115.159:443

98.19.224.125:995

12.172.173.82:465

147.219.4.194:443

86.250.12.86:2222

188.176.171.3:443

88.126.94.4:50000

87.202.101.164:50000

74.92.243.115:50000

98.176.5.56:443

198.2.51.242:993

75.98.154.19:443
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

    • Target

      x.dll

    • Size

      899KB

    • MD5

      87c220bee9ba46cf06594dd67d681745

    • SHA1

      952af441f0eca8a6fed01ae5380622c859f3ac89

    • SHA256

      7693ae43bff73010d229d64c4479ed8fabb5dcaf717a3d3b00b54a934511e180

    • SHA512

      5f77ee3a00dc6738b06975e574df13131b75416350629cc0dd5b57a0055854a7f3c4aa7f5175383e9e3851544e64b0e0c7ddd5d3298bafc0631cf73ed728d338

    • SSDEEP

      24576:sHA2XMYABs772W/8vLc/9sgR+OVnh8gt42vCkzeztwPOfQWy5UuxVFLqsu:UMYABC8vLc/2jA8gpUuxVFLqh

    Score
    10/10
    qakbotobama2611683268508bankerstealertrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks