oalabs

Live Stream VOD: Reverse Engineering Qakbot (Patreon)

Published:

2021-12-26 22:48:02

Edited:

2022-01-13 21:41:31

Imported:

Tags:

C++ IDA Live Stream Qakbot Qbot Twitch reverse engineering

Content

Twitch live stream VOD. We begin reverse engineering Qakbot / Qbot malware. In this stream we resolve the dynamic imports, decrypt the encrypted strings, and begin building out the C++ structs for the malware.

Sample available on Malshare:

670e990631c0b98ccdd7701c2136f0cb8863a308b07abd0d64480c8a2412bde4

Lab Notes - includes code samples:

Qakbot Analysis

Files

Vimeo

Join the web's most supportive community of creators and get high-quality tools for hosting, sharing, and streaming videos in gorgeous HD with no ads.