qakbot | 110423a9555f7aba13483288abdb3badc6194dc01f825bfe1be174d506625efb | Triage

Submit
Reports

Overview

overview

Static

static

third_carved_dll.dll

windows7-x64

third_carved_dll.dll

windows10-2004-x64

Sharing

General

Target

third_carved_dll.bin
Size

166KB
Sample

240326-182qasgh31
MD5

07dfe6aed5e353c8d4cc0ab026c63e3e
SHA1

29fe5ec300aa7e3b5124a223eafaa0c7df39db56
SHA256

110423a9555f7aba13483288abdb3badc6194dc01f825bfe1be174d506625efb
SHA512

7d165bc271fde6a07d65400f4175eaa12710bb4219cb24085b67cfa7559352df9d7dd08814a42f2b17d1b888e7b43093a8d6ad630eb0eb6bfe97014a6ef0bb8a
SSDEEP

3072:9ixYRIgVFK9cJx2I87ZMGCDaZqZu9E/gVAE/dxwtJBdw:9ixYVVQ9G2I8ZMGjZqY9EcAWUB6

Score

10^/10

qakbot tchk06 1702463600 banker stealer trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

third_carved_dll.dll

Resource

win7-20231129-en

qakbot tchk06 1702463600 banker stealer trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

third_carved_dll.dll

Resource

win10v2004-20240226-en

qakbot tchk06 1702463600 banker stealer trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

qakbot

Botnet

tchk06

Campaign

1702463600

C2

45.138.74.191:443

65.108.218.24:443

Attributes

camp_date
2023-12-13 10:33:20 +0000 UTC

Targets

- Target
  
  third_carved_dll.bin
- Size
  
  166KB
- MD5
  
  07dfe6aed5e353c8d4cc0ab026c63e3e
- SHA1
  
  29fe5ec300aa7e3b5124a223eafaa0c7df39db56
- SHA256
  
  110423a9555f7aba13483288abdb3badc6194dc01f825bfe1be174d506625efb
- SHA512
  
  7d165bc271fde6a07d65400f4175eaa12710bb4219cb24085b67cfa7559352df9d7dd08814a42f2b17d1b888e7b43093a8d6ad630eb0eb6bfe97014a6ef0bb8a
- SSDEEP
  
  3072:9ixYRIgVFK9cJx2I87ZMGCDaZqZu9E/gVAE/dxwtJBdw:9ixYVVQ9G2I8ZMGjZqY9EcAWUB6
Score

10^/10

qakbot tchk06 1702463600 banker stealer trojan
- Detect Qakbot Payload
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

qakbottchk061702463600bankerstealertrojan

behavioral2

qakbottchk061702463600bankerstealertrojan

© 2018-2024

Terms | Privacy