Extracted

• • Target

    8ce35956c1cdaa3c4a7e4d2b28b5bb870e62b0c06389d78a52bc98bb2dd249a0

  • Size

    80KB

  • MD5

    40d2893bcbfe5499545506adb6f94747

  • SHA1

    01bc59b477f4112c634a93666483ab49129ca6a3

  • SHA256

    8ce35956c1cdaa3c4a7e4d2b28b5bb870e62b0c06389d78a52bc98bb2dd249a0

  • SHA512

    e3a0cff08e19fdab016d104e49984abdc547f3d65246ae88b6fadc0286402d9ab4d99ffbc64969b5b8f91e10921d877c45e3dbd98dd100cda429845d3205d42f

  • SSDEEP

    1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOO/7rS:GhfxHNIreQm+HiD/7rS

  Score

  10^/10

  qqpassdiscoverypersistencetrojan

  • QQpass

    QQpass is a trojan written in C++..

    trojanqqpass

  • Qqpass family

    qqpass

  • Executes dropped EXE

  • Loads dropped DLL

  • Modifies system executable filetype association

    persistence

  • Drops file in System32 directory

  behavioral1behavioral2