qakbot | 99dd144822a3644e0e0ffcd2e5c9b03b4ad1be6c6ad4699747ff1b1e124d6f39 | Triage

Sharing

General

Target

99dd144822a3644e0e0ffcd2e5c9b03b4ad1be6c6ad4699747ff1b1e124d6f39.exe.bin
Size

1.0MB
Sample

201124-2cmadmmcax
MD5

b4c4124ef49eef7085d34ddab3b4ae9f
SHA1

87e3ffc0b6274a3084d1b0f97af29037bcc317bf
SHA256

99dd144822a3644e0e0ffcd2e5c9b03b4ad1be6c6ad4699747ff1b1e124d6f39
SHA512

20e0c48b4ada8916ef03cb92b92a9c3557327feaacb409bac648b8d50f1c7ae9d2ddc89ad931bfebaf5af8ac16b1a8a2012d2832facb015379748ad8d6946955

Score

10^/10

qakbot banker stealer trojan

Malware Config

Targets

- Target
  
  99dd144822a3644e0e0ffcd2e5c9b03b4ad1be6c6ad4699747ff1b1e124d6f39.exe.bin
- Size
  
  1.0MB
- MD5
  
  b4c4124ef49eef7085d34ddab3b4ae9f
- SHA1
  
  87e3ffc0b6274a3084d1b0f97af29037bcc317bf
- SHA256
  
  99dd144822a3644e0e0ffcd2e5c9b03b4ad1be6c6ad4699747ff1b1e124d6f39
- SHA512
  
  20e0c48b4ada8916ef03cb92b92a9c3557327feaacb409bac648b8d50f1c7ae9d2ddc89ad931bfebaf5af8ac16b1a8a2012d2832facb015379748ad8d6946955
Score

10^/10

qakbot banker stealer trojan
- Qakbot/Qbot
  Qbot or Qakbot is a sophisticated worm with banking capabilities.
  trojan banker stealer qakbot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

qakbotbankerstealertrojan

behavioral2

qakbotbankerstealertrojan