qakbot | 30306eb284f9b684b2f0d02cac216563abfe6bb75099100170f160718a18ca09 | Triage

Submit
Reports

Overview

overview

Static

static

3

780be7a70c...f3.dll

windows7-x64

780be7a70c...f3.dll

windows10-2004-x64

Sharing

General

Target

30306eb284f9b684b2f0d02cac216563abfe6bb75099100170f160718a18ca09
Size

256KB
Sample

240417-qcvxrsgf57
MD5

a48fcf074ebce4ee40b03242ebdc9613
SHA1

a655f23d8d0f1a1af9c3e5fdc2fb7f3a6d4789c5
SHA256

30306eb284f9b684b2f0d02cac216563abfe6bb75099100170f160718a18ca09
SHA512

f88357c6a949a9d9c4f18907ad468eb7f594cd3b6e5dae5552482c93c89aebb944e1c80df0c12f8441689b2cc6366793eac482660e578bf2134686273d48e5f4
SSDEEP

6144:qmM0msZR0kR3YhsPcTqHL5xAvkkFE3NotaJrqj2UDbS6kEm8c:yIZR0kRsskTqcxOdotaoj2UDOllT

Score

10^/10

qakbot tchk06 1702463600 banker stealer trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

780be7a70ce3567ef268f6c768fc5a3d2510310c603bf481ebffd65e4fe95ff3.dll

Resource

win7-20240221-en

qakbot tchk06 1702463600 banker stealer trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

780be7a70ce3567ef268f6c768fc5a3d2510310c603bf481ebffd65e4fe95ff3.dll

Resource

win10v2004-20240412-en

qakbot tchk06 1702463600 banker stealer trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

qakbot

Botnet

tchk06

Campaign

1702463600

C2

45.138.74.191:443

65.108.218.24:443

Attributes

camp_date
2023-12-13 10:33:20 +0000 UTC

Targets

- Target
  
  780be7a70ce3567ef268f6c768fc5a3d2510310c603bf481ebffd65e4fe95ff3.exe
- Size
  
  459KB
- MD5
  
  0a29918110937641bbe4a2d5ee5e4272
- SHA1
  
  7d4a6976c1ece81e01d1f16ac5506266d5210734
- SHA256
  
  780be7a70ce3567ef268f6c768fc5a3d2510310c603bf481ebffd65e4fe95ff3
- SHA512
  
  998a6ee2fa6b345aeea72afaa91add8433e986a2678dbb8995ead786c30bdc00704c39c4857935b20669005b292736d50e1c6ad38901aa1f29db7b6a597fae3f
- SSDEEP
  
  6144:T4+8LGS5U/dvT6+adDaMuMeek1Wg3NkA+8hMzA1W9xCTSI:8fZ5U/dvPadDrNebWg3N+QMc16MOI
Score

10^/10

qakbot tchk06 1702463600 banker stealer trojan
- Detect Qakbot Payload
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

qakbottchk061702463600bankerstealertrojan

behavioral2

qakbottchk061702463600bankerstealertrojan

© 2018-2024

Terms | Privacy