General

  • Target

    22022024_2138_0.5955887613560662.dat

  • Size

    3.3MB

  • Sample

    240222-qxpw9aaf48

  • MD5

    63649ec9aa5c9913b436bc220e0c7cae

  • SHA1

    31ad2582bd5736b0b84aea498c105d1ad955d068

  • SHA256

    801b529ea3173ca504af6c8ee1b48f731c5d83c4771677b0752af779a0f3d0a4

  • SHA512

    3266e2097d71055aea77c010bfed7a849cae62e38a254c291746814434c25db332e475f5ee02bfc33cd5c1b7c61be8f73f0b5a9d030cda53e2b1994b5b296a15

  • SSDEEP

    49152:sCXtvRXOhEc2MgyyuTEGQp8EamZaFChW7ZaxJmLufu4b:sCxRXOhEc2MgJHTp+isL+

Score
10/10

Malware Config

Extracted

Family

pikabot

C2

141.95.106.106

104.129.55.106

104.129.55.105

23.226.138.161

145.239.135.24

85.239.243.155

23.226.138.143

57.128.165.176

178.18.246.136

Targets

    • Target

      22022024_2138_0.5955887613560662.dat

    • Size

      3.3MB

    • MD5

      63649ec9aa5c9913b436bc220e0c7cae

    • SHA1

      31ad2582bd5736b0b84aea498c105d1ad955d068

    • SHA256

      801b529ea3173ca504af6c8ee1b48f731c5d83c4771677b0752af779a0f3d0a4

    • SHA512

      3266e2097d71055aea77c010bfed7a849cae62e38a254c291746814434c25db332e475f5ee02bfc33cd5c1b7c61be8f73f0b5a9d030cda53e2b1994b5b296a15

    • SSDEEP

      49152:sCXtvRXOhEc2MgyyuTEGQp8EamZaFChW7ZaxJmLufu4b:sCxRXOhEc2MgJHTp+isL+

    Score
    10/10
    • PikaBot

      PikaBot is a botnet that is distributed similarly to Qakbot and written in c++.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.