MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 bf05f2140663b3e37551680d7f0c55729efc193c69591614a02ef32a371a3d8e. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry



Quakbot


Vendor detections: 2


Intelligence 2 IOCs YARA File information Comments 1

SHA256 hash: bf05f2140663b3e37551680d7f0c55729efc193c69591614a02ef32a371a3d8e
SHA3-384 hash: aef520ce0c89cf6380459a3f615acf973d9ad8ee3b13919aa0d87c6d3171abcc16e4c401c4b0b83301afdf5ed538b94b
SHA1 hash: 3f443db956f9f9d3a86ece4aed408e230c27339c
MD5 hash: cc0ed63bf3ecd25ac8fddafa6a80859d
humanhash: jersey-beryllium-lake-sixteen
File name:Explicabodelectus534486588.zip.zip
Download: download sample
Signature Quakbot
File size:1'300 bytes
First seen:2022-09-14 12:24:14 UTC
Last seen:Never
File type: zip
MIME type:application/zip
ssdeep 24:9okAe1DTsx6JCsuSIKm12uL9ICiXjNGL1cMp+NwYX4MBYeJHuCtG/lkIN:9oO1SGCZfP9z1A5rZJrG99
TLSH T15121EA615585C34CC9D3783F6A04A78F625B75290B54C125CA1C3F170CA13D18F27315
TrID 80.0% (.ZIP) ZIP compressed archive (4000/1)
20.0% (.PG/BIN) PrintFox/Pagefox bitmap (640x800) (1000/1)
Reporter @pr0xylife
Tags:BB Qakbot Quakbot zip

Intelligence


File Origin
# of uploads :
1
# of downloads :
1'653
Origin country :
IE IE
Mail intelligence
No data
Vendor Threat Intelligence
Gathering data
Gathering data

File information


The table below shows additional information about this malware sample such as delivery method and external references.

Comments



Avatar
proxylife commented on 2022-09-14 12:42:56 UTC

pw infected