General

  • Target

    e40000.dll

  • Size

    129KB

  • Sample

    230612-v5xdhsdb67

  • MD5

    ac77c3f304a7b4b9c0384fc6528a701b

  • SHA1

    790c8dbac00599f98b5832f98144db5b42337e83

  • SHA256

    463158091de1c6daa60498bf425f6b66072c2836210b9d449192e170ef9e34ea

  • SHA512

    4f187918fc3c035a2f6c2695955109149b9d97a4a886349ea69893e4fd472d1232d822419fdeb3a00690e6f40fd17a377f7797d21ac8bb9033f0402c0c7189ce

  • SSDEEP

    3072:hST5hTsRkHO+fia51+MAevJ+mJfh18TBfwCKLx:OsRkOXa7+JevJJJfh18TBICW

Malware Config

Extracted

Family

qakbot

Version

404.1320

Botnet

obama265

Campaign

1685436052

C2

103.42.86.42:995

174.4.89.3:443

161.142.103.187:995

78.160.146.127:443

84.35.26.14:995

12.172.173.82:20

70.28.50.223:2078

124.149.143.189:2222

70.160.67.203:443

186.64.67.30:443

103.123.223.133:443

94.207.104.225:443

89.114.140.100:443

213.64.33.61:2222

86.176.144.234:2222

72.134.124.16:443

47.34.30.133:443

109.50.149.241:2222

85.104.105.67:443

81.111.108.123:443

Targets

    • Target

      e40000.dll

    • Size

      129KB

    • MD5

      ac77c3f304a7b4b9c0384fc6528a701b

    • SHA1

      790c8dbac00599f98b5832f98144db5b42337e83

    • SHA256

      463158091de1c6daa60498bf425f6b66072c2836210b9d449192e170ef9e34ea

    • SHA512

      4f187918fc3c035a2f6c2695955109149b9d97a4a886349ea69893e4fd472d1232d822419fdeb3a00690e6f40fd17a377f7797d21ac8bb9033f0402c0c7189ce

    • SSDEEP

      3072:hST5hTsRkHO+fia51+MAevJ+mJfh18TBfwCKLx:OsRkOXa7+JevJJJfh18TBICW

    Score
    1/10

MITRE ATT&CK Enterprise v6

Tasks