qakbot | 93a98b919aec23411ae62dba8d0d22f939da45dec19db2b4e7293124d8f1507f | Triage

Submit
Reports

Overview

overview

Static

static

1

93a98b919a...7f.msi

windows7-x64

93a98b919a...7f.msi

windows10-2004-x64

Sharing

General

Target

93a98b919aec23411ae62dba8d0d22f939da45dec19db2b4e7293124d8f1507f.msi
Size

1.9MB
Sample

240216-z8ckqsfg2v
MD5

82b8bd90e500fb0bf878d6f430c5abec
SHA1

f004c09428f2f18a145212a9e55eef3615858f9c
SHA256

93a98b919aec23411ae62dba8d0d22f939da45dec19db2b4e7293124d8f1507f
SHA512

82b2e997bf5bc0d08ab8dd921aef3e8d620a61c26f86b6f481845ad694d7b97f65dfa42e1c18b83f0f827cad9df69a409b75d96793e5bd7124c26bc7cb07f881
SSDEEP

49152:Ksjitd+vszAlozTy4g5r8+5eNBABxGNvXreD68f:rihTyfcXreO8f

Score

10^/10

qakbot banker stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

93a98b919aec23411ae62dba8d0d22f939da45dec19db2b4e7293124d8f1507f.msi

Resource

win7-20231215-en

qakbot banker stealer trojan

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

93a98b919aec23411ae62dba8d0d22f939da45dec19db2b4e7293124d8f1507f.msi

Resource

win10v2004-20231215-en

qakbot banker stealer trojan

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  93a98b919aec23411ae62dba8d0d22f939da45dec19db2b4e7293124d8f1507f.msi
- Size
  
  1.9MB
- MD5
  
  82b8bd90e500fb0bf878d6f430c5abec
- SHA1
  
  f004c09428f2f18a145212a9e55eef3615858f9c
- SHA256
  
  93a98b919aec23411ae62dba8d0d22f939da45dec19db2b4e7293124d8f1507f
- SHA512
  
  82b2e997bf5bc0d08ab8dd921aef3e8d620a61c26f86b6f481845ad694d7b97f65dfa42e1c18b83f0f827cad9df69a409b75d96793e5bd7124c26bc7cb07f881
- SSDEEP
  
  49152:Ksjitd+vszAlozTy4g5r8+5eNBABxGNvXreD68f:rihTyfcXreO8f
Score

10^/10

qakbot banker stealer trojan
- Detect Qakbot Payload
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

qakbotbankerstealertrojan

behavioral2

qakbotbankerstealertrojan

© 2018-2024

Terms | Privacy