General

  • Target

    99.9.dat

  • Size

    516KB

  • Sample

    230613-3e5afacc63

  • MD5

    2c9dbd81b0fb3292ad7378cd8109e6fe

  • SHA1

    9fb8ba2b414651619816b74b8cf6c19a5d0ed664

  • SHA256

    7ef93e199d447cf2494b104256247e94185f53297278ec590ac67515b8b24513

  • SHA512

    405d36eddb4bd5c2e06e85ee036413f6a9820caeb8ecad34e3d0ab8f64d8a1392f068cefc409d54239a5eb9f3f2f978386af7017989eb640b7550cc6bfab02fb

  • SSDEEP

    12288:xspsY6tHFBPl7rNu5bZHZ95gjyIaa0Pxg:xspsY6tHFBd7rIl175gjyIl0O

Malware Config

Extracted

Family

qakbot

Version

404.1374

Botnet

BB32

Campaign

1686673959

C2

190.141.193.170:443

184.189.41.80:443

149.74.159.67:2222

41.227.83.112:995

24.234.220.88:443

165.120.244.223:2222

85.152.152.46:443

213.16.249.54:995

197.26.182.159:443

86.129.138.170:443

66.241.183.99:443

74.12.146.45:2222

190.199.147.209:2222

47.205.25.170:443

12.172.173.82:993

66.35.126.117:2222

84.35.26.14:995

64.145.76.21:22

147.147.30.126:2222

80.12.88.148:2222

Targets

    • Target

      99.9.dat

    • Size

      516KB

    • MD5

      2c9dbd81b0fb3292ad7378cd8109e6fe

    • SHA1

      9fb8ba2b414651619816b74b8cf6c19a5d0ed664

    • SHA256

      7ef93e199d447cf2494b104256247e94185f53297278ec590ac67515b8b24513

    • SHA512

      405d36eddb4bd5c2e06e85ee036413f6a9820caeb8ecad34e3d0ab8f64d8a1392f068cefc409d54239a5eb9f3f2f978386af7017989eb640b7550cc6bfab02fb

    • SSDEEP

      12288:xspsY6tHFBPl7rNu5bZHZ95gjyIaa0Pxg:xspsY6tHFBd7rIl175gjyIl0O

MITRE ATT&CK Enterprise v6

Tasks