Overview

overview

10

Static

static

10

7ee6095ba8...71.dll

windows7-x64

1

7ee6095ba8...71.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7ee6095ba8c4ed9fe11fbf5e703823e1aeae7f5443027738f55979b27ca57171.zip

  • Size

    78KB

  • Sample

    231022-vk55xsbc7w

  • MD5

    9ec5148a01e7c207a17a36f783f0af18

  • SHA1

    4cb90fc3cafe9816d80c61794c9a73b48da4315b

  • SHA256

    3bf2d806cb7a8bd0425c30aad4c821bd07fcc1e946c07c2742eb1a199424c1d3

  • SHA512

    c68fae465f26f185a809af4dee7bde58b0fd3b1d5c1667a0fd2fbb65ebfeee5790e571a5e849eec8116e22025c9794b518aaed8024acafb3991659814bf43108

  • SSDEEP

    1536:Y3znxzG3KToNaq7qaIJr4Dt7n/S6sHfm+tXK7QgRO/nXATcly0f8zOSm:Y83KTrq7qaYr4Dt7n/LsHNtX8IL6m

Score
10/10
qakbotobama1501640256791

Malware Config

Extracted

Family

qakbot

Version

403.10

Botnet

obama150

Campaign

1640256791

C2

96.21.251.127:2222

70.51.134.181:2222

69.14.172.24:443

186.64.87.213:443

94.62.161.77:995

103.139.242.30:990

114.79.148.170:443

217.164.247.241:2222

178.153.86.181:443

136.232.34.70:443

37.210.226.125:61202

173.21.10.71:2222

31.219.154.176:32101

140.82.49.12:443

32.221.229.7:443

24.152.219.253:995

106.51.48.170:50001

114.38.161.124:995

96.37.113.36:993

190.39.205.165:443

Targets

    • Target

      7ee6095ba8c4ed9fe11fbf5e703823e1aeae7f5443027738f55979b27ca57171.dll

    • Size

      132KB

    • MD5

      81e56fd3b67ce33ef7150003985be7f4

    • SHA1

      6c739fcc6dea8cc65617ff184f1febcd5404143a

    • SHA256

      7ee6095ba8c4ed9fe11fbf5e703823e1aeae7f5443027738f55979b27ca57171

    • SHA512

      4b82547e9666897566318fe5fb1b0535412bbc44838288900bc534bb39a8dc8725f522ad43eec81080cf88fd5033e2112db86dc228c2e44cb9f0010e35f410c9

    • SSDEEP

      3072:4ELogSZScYg+E/wmqpFQQT7J/AzMVWWRTBfItV74VZ:LofScb/wmqp+QPJ4zMVWWRTBgkj

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks