qakbot | 5413f88291c287be9ff04da61d22457b8f0dfc9e168230d1c86d1e90fd98f55b

General

Target

Archive.zip
Size

301KB
Sample

230606-xjvznsfa78
MD5

cf48b7396a6e9d2ce8694957d3e5a027
SHA1

45a6192b703bc4827081862e524b386dd8bd0b34
SHA256

5413f88291c287be9ff04da61d22457b8f0dfc9e168230d1c86d1e90fd98f55b
SHA512

02daef0daecfdedd36f00f9d5fb85e82457298fbbe91840e328a1939d0382c1edc641c606ae82eb8453ad1bf1624c20d591824da9a6786dd317c36457d08241e
SSDEEP

6144:esnTXyrAsxVg8ZiRkoRX/u+Djd2udyG7E1:TnfsxVgkgpNd97G

Score

10^/10

Malware Config

Extracted

Family

qakbot

Version

404.1346

Botnet

BB31

Campaign

1685959443

C2

77.126.99.230:443

24.234.220.88:465

151.62.238.176:443

85.57.212.13:3389

199.27.66.213:443

12.172.173.82:21

12.172.173.82:50001

12.172.173.82:465

105.184.209.117:995

193.80.73.200:995

86.208.35.220:2222

93.187.148.45:995

37.189.89.196:443

182.75.189.42:995

65.95.141.84:2222

84.216.198.201:6881

105.102.10.220:443

124.246.122.199:2222

83.249.198.100:2222

1.221.179.74:443

Targets

- Target
  
  qak.bat
- Size
  
  25B
- MD5
  
  424453ad642c8ce93f83050149acf5fd
- SHA1
  
  f4a96928b74f7f3ff0166d4994f9655212e0dabc
- SHA256
  
  5235bde4a41039070e2bb59ab109bc9fd131fe3a407f5efa59f9165c3f638e96
- SHA512
  
  9b2cce8aeda846fac949f1e209c76f0f60025ab8bff14e3277e1800864e53374e845adda77f4db37de3b28c2e13d5a2986b9f3f50642093421e5217e501fc4c7
Score

10^/10

qakbot bb31 1685959443 banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2
- Target
  
  qak.dll
- Size
  
  496KB
- MD5
  
  179d4849f8d096122d05de3c7bebb4bd
- SHA1
  
  ee3ead69ec6801721cde4ca6480f30ecff948c08
- SHA256
  
  2f6ae770a5d56ed8a2cfe262e196363b5c80e58468c66ff36cdf9c75306c2c55
- SHA512
  
  f449ac3cba0d31168328f3e0af94bb91f2f2d1c2a9ec3e4200d4f946973a2ac34bc3e42f10fa03c433d1eb89f131e39ada44f2cc921c836b35e56efeac62cdfe
- SSDEEP
  
  12288:W5XwIjvPgzGgQChM5u/7hIYArytfqYsgzelZ7CPZUeQ58:njhhArytfqYsgalZWPRQ58
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Qakbot/Qbot

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4