General

  • Target

    2000-55-0x00000000001F0000-0x0000000000214000-memory.dmp

  • Size

    144KB

  • Sample

    230531-t2ylqsga95

  • MD5

    a83c7c6686716f5bb830084781fda773

  • SHA1

    c9b8f0fbf891bafbe0a6b4a25225a2ada2c8d4ce

  • SHA256

    f0bbaf2e812a1ac42d53667625021e189542dff78148c47d4cb504c242ab13bd

  • SHA512

    bcd616e2c9d38492ce0b9e46b062172fc19fe2d5f978fb563aaf23ef8e4783e852b9c9833ffcee54d488443ff078159957c161a49486a4dcfdcc9b54fb28dff1

  • SSDEEP

    3072:3O75r8Zlp173zJZ5A3xJlVRJMTBfAVSLNS:pZl/7jJk3xJrRJMTB4Vu

Score
10/10

Malware Config

Extracted

Family

qakbot

Version

404.1320

Botnet

BB30

Campaign

1685526716

C2

198.2.51.242:993

88.126.94.4:50000

123.3.240.16:6881

183.87.163.165:443

27.99.32.26:2222

180.151.229.230:2078

27.109.19.90:2078

122.184.143.86:443

105.101.207.3:443

84.215.202.8:443

85.231.105.49:2222

12.172.173.82:995

184.181.75.148:443

72.134.124.16:443

149.74.159.67:2222

174.4.89.3:443

200.84.200.20:2222

223.166.13.95:995

69.133.162.35:443

80.12.88.148:2222

Targets

    • Target

      2000-55-0x00000000001F0000-0x0000000000214000-memory.dmp

    • Size

      144KB

    • MD5

      a83c7c6686716f5bb830084781fda773

    • SHA1

      c9b8f0fbf891bafbe0a6b4a25225a2ada2c8d4ce

    • SHA256

      f0bbaf2e812a1ac42d53667625021e189542dff78148c47d4cb504c242ab13bd

    • SHA512

      bcd616e2c9d38492ce0b9e46b062172fc19fe2d5f978fb563aaf23ef8e4783e852b9c9833ffcee54d488443ff078159957c161a49486a4dcfdcc9b54fb28dff1

    • SSDEEP

      3072:3O75r8Zlp173zJZ5A3xJlVRJMTBfAVSLNS:pZl/7jJk3xJrRJMTB4Vu

    Score
    1/10

MITRE ATT&CK Matrix

Tasks