General

  • Target

    unsatableLinoleums.overallLithous.dat

  • Size

    521KB

  • Sample

    230613-pq3zvsgg3t

  • MD5

    4a1be3aedf5fc604c5eb8413d0fa4418

  • SHA1

    e630c358b5518d7dc4c599b94a20fcaeb4e5afde

  • SHA256

    a488e42467652aa783dc4b22839f0c8890d56ef83f3d6b89925285a434639cd0

  • SHA512

    bf133ac0f0bf893aaf3d8aac81f732e74a14d1043f6d814040ef87f757ef47c8f0e8026326570167d9c1d36ad6806a9c5ee0bd623a0c316c69cb7653d08a2bc1

  • SSDEEP

    12288:uspsY6tHFBPl7rNuKbZHZ95gjyIN+ohUt3uWy4p5:uspsY6tHFBd7rIw175gjyIEuU4Wy

Malware Config

Extracted

Family

qakbot

Version

404.1370

Botnet

BB32

Campaign

1686646848

C2

72.134.124.16:443

70.28.50.223:2078

103.140.174.20:2222

86.97.96.62:2222

73.207.160.219:443

190.199.147.209:2222

12.172.173.82:995

70.160.67.203:443

116.75.63.181:443

88.126.94.4:50000

147.219.4.194:443

103.123.223.153:443

184.181.75.148:443

24.198.114.130:995

100.10.72.114:443

86.176.144.174:2222

24.234.220.88:993

198.2.51.242:993

91.169.12.198:32100

12.172.173.82:20

Targets

    • Target

      unsatableLinoleums.overallLithous.dat

    • Size

      521KB

    • MD5

      4a1be3aedf5fc604c5eb8413d0fa4418

    • SHA1

      e630c358b5518d7dc4c599b94a20fcaeb4e5afde

    • SHA256

      a488e42467652aa783dc4b22839f0c8890d56ef83f3d6b89925285a434639cd0

    • SHA512

      bf133ac0f0bf893aaf3d8aac81f732e74a14d1043f6d814040ef87f757ef47c8f0e8026326570167d9c1d36ad6806a9c5ee0bd623a0c316c69cb7653d08a2bc1

    • SSDEEP

      12288:uspsY6tHFBPl7rNuKbZHZ95gjyIN+ohUt3uWy4p5:uspsY6tHFBd7rIw175gjyIEuU4Wy

MITRE ATT&CK Matrix

Tasks