Overview

overview

10

Static

static

3

1337.dll

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1337.dll

  • Size

    1014KB

  • Sample

    230516-ss6qbaad9z

  • MD5

    e0d7910c702f92d01c71e52820521bca

  • SHA1

    4e116178d0d997f70a62574eae8d27c30f0a1c20

  • SHA256

    4cbfa2bd0947022b000616c3aa9b4962c87a9d3b7aceae14f22a94ff756f4d6d

  • SHA512

    90fc6e0881ee6afb2033dfd5e0524c6385627a52f07a200b66dfb41eef124e61d866e4385c20748ca9047df3f7ac3778c5116ac1c2fc69da277c57456543a71b

  • SSDEEP

    12288:UjYxnjXcBIlezoQy41hY1eOuQxb64XpyUJM64eMr4JlMxx8Q484xvVAc+IFJNp:UUpcBSf4IeOlbrooi4JluqMQd

Score
10/10
qakbotbb281684145503bankerstealertrojan

Malware Config

Extracted

Family

qakbot

Version

404.1038

Botnet

BB28

Campaign

1684145503

C2

74.33.196.114:443

108.190.115.159:443

47.21.51.138:443

76.16.49.134:443

113.11.92.30:443

98.19.234.243:995

197.14.208.59:443

88.126.94.4:50000

24.69.137.232:2222

70.28.50.223:32100

184.176.35.223:2222

12.172.173.82:50001

87.202.101.164:50000

70.28.50.223:2087

75.109.111.89:443

86.130.9.227:2222

12.172.173.82:32101

70.28.50.223:3389

80.12.88.148:2222

174.118.68.176:443
Attributes
  • salt

    SoNuce]ugdiB3c[doMuce2s81*uXmcvP

Targets

    • Target

      1337.dll

    • Size

      1014KB

    • MD5

      e0d7910c702f92d01c71e52820521bca

    • SHA1

      4e116178d0d997f70a62574eae8d27c30f0a1c20

    • SHA256

      4cbfa2bd0947022b000616c3aa9b4962c87a9d3b7aceae14f22a94ff756f4d6d

    • SHA512

      90fc6e0881ee6afb2033dfd5e0524c6385627a52f07a200b66dfb41eef124e61d866e4385c20748ca9047df3f7ac3778c5116ac1c2fc69da277c57456543a71b

    • SSDEEP

      12288:UjYxnjXcBIlezoQy41hY1eOuQxb64XpyUJM64eMr4JlMxx8Q484xvVAc+IFJNp:UUpcBSf4IeOlbrooi4JluqMQd

    Score
    10/10
    qakbotbb281684145503bankerstealertrojan
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks