pikabot

Resubmissions

22-06-2024 17:36

240622-v6w45swhkc 10

16-11-2023 07:55

231116-jr41nahf9v 3

15-11-2023 14:30

231115-rvbghsbd22 3

Sharing

Copy URL

Twitter E-mail

General

Target

pikabot
Size

306KB
Sample

240622-v6w45swhkc
MD5

a12001230dd6f5ca67f7935bcfdcd650
SHA1

fd39ca7366ca63f15a6e61e2cbda9195077a83b6
SHA256

39d6f7865949ae7bb846f56bff4f62a96d7277d2872fec68c09e1227e6db9206
SHA512

224d6c55953440d894d84787a88f6230964a9ec44f323dcdc49ebd9722cc5426719f36d202b586f408d0bd8d4e1502ba7edbb9037c500b1cab31242ada6bce91
SSDEEP

3072:engX9CnOMcKVtnEcoVzr4j0NnRT+JwMU3AWoeFE1YerPvbyg1ihk6kvtfGq0ev37:EZ7ZGVzr4jq5kJRwFE77arkR10efUKh

Score

10^/10

pikabot botnet

Malware Config

Extracted

Family

pikabot

154.92.19.139:2222

149.248.53.65:2221

158.247.246.182:2226

154.221.30.136:13724

207.246.111.127:13786

154.61.75.156:2078

210.243.8.247:23399

Targets

- Target
  
  pikabot
- Size
  
  306KB
- MD5
  
  a12001230dd6f5ca67f7935bcfdcd650
- SHA1
  
  fd39ca7366ca63f15a6e61e2cbda9195077a83b6
- SHA256
  
  39d6f7865949ae7bb846f56bff4f62a96d7277d2872fec68c09e1227e6db9206
- SHA512
  
  224d6c55953440d894d84787a88f6230964a9ec44f323dcdc49ebd9722cc5426719f36d202b586f408d0bd8d4e1502ba7edbb9037c500b1cab31242ada6bce91
- SSDEEP
  
  3072:engX9CnOMcKVtnEcoVzr4j0NnRT+JwMU3AWoeFE1YerPvbyg1ihk6kvtfGq0ev37:EZ7ZGVzr4jq5kJRwFE77arkR10efUKh
Score

10^/10

pikabot botnet
- PikaBot
  PikaBot is a botnet that is distributed similarly to Qakbot and written in c++.
  botnet pikabot
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Command and Scripting Interpreter

T1059

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks