General

  • Target

    amounted.dat

  • Size

    279KB

  • Sample

    230614-pbmdkagg5z

  • MD5

    ed8f05e36358b304d60d28a8441306d9

  • SHA1

    b2ca59023d54f6a248064ff36170eec3c1eb9bd6

  • SHA256

    fd586ed89b79241966218b63a4dcef796811cc216947ba35f3ea1d8a238ce4eb

  • SHA512

    4feddeaea80eecb41f5787625ef9553bd67ce5ba38f5ff11330679d47085934dfc41bc53f4e904034e375271d23ead341771db1193a404d3ffff7b209699be78

  • SSDEEP

    6144:+RibgWEZ5Txh9QQU7kVTAHluobjrkMk9P18/79O19VGy:+RSBEZ6k9PC/g1a

Malware Config

Extracted

Family

qakbot

Version

404.1374

Botnet

BB32

Campaign

1686735623

C2

86.129.138.170:443

113.11.92.30:443

12.172.173.82:2087

72.205.104.134:443

84.213.236.225:995

92.186.69.229:2222

1.221.179.74:443

103.141.50.43:995

58.162.223.233:443

96.242.126.116:2222

92.154.17.149:2222

75.109.111.89:443

125.99.76.102:443

80.12.88.148:2222

109.149.147.195:2222

27.99.32.26:2222

70.28.50.223:3389

70.28.50.223:32100

86.97.96.62:2222

66.241.183.99:443

Targets

    • Target

      amounted.dat

    • Size

      279KB

    • MD5

      ed8f05e36358b304d60d28a8441306d9

    • SHA1

      b2ca59023d54f6a248064ff36170eec3c1eb9bd6

    • SHA256

      fd586ed89b79241966218b63a4dcef796811cc216947ba35f3ea1d8a238ce4eb

    • SHA512

      4feddeaea80eecb41f5787625ef9553bd67ce5ba38f5ff11330679d47085934dfc41bc53f4e904034e375271d23ead341771db1193a404d3ffff7b209699be78

    • SSDEEP

      6144:+RibgWEZ5Txh9QQU7kVTAHluobjrkMk9P18/79O19VGy:+RSBEZ6k9PC/g1a

MITRE ATT&CK Matrix

Tasks