Overview

overview

8

Static

static

qbittorren...up.exe

windows7-x64

7

qbittorren...up.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    qbittorrent_4.5.0_qt6_x64_setup.exe

  • Size

    31.1MB

  • Sample

    230114-x5ff4sce46

  • MD5

    aa805f24f072c995c0685d4c21abf11e

  • SHA1

    22fadf82be61a6f743b5ddaeb826adf6ee03ad7b

  • SHA256

    bbaad73e083bbc67ed64d13bb5c1e1afc0f174338d74473bea37ea44cd2c9442

  • SHA512

    d7257955c0cfb3989e21fc1027a15da785e29dba52e2928bf2da31421f49e4eb6f2c72303b5ef305e71d6998325b9f6b958cf879c64e8769ebc7c9ecb037adea

  • SSDEEP

    786432:IH8h75bGR08bkxacKSDAh9jGrQo3XKhlmlIp/onJlaX:IMtyR084//DI5k3XKh2Ipg/A

Score
8/10
discovery

Malware Config

Targets

    • Target

      qbittorrent_4.5.0_qt6_x64_setup.exe

    • Size

      31.1MB

    • MD5

      aa805f24f072c995c0685d4c21abf11e

    • SHA1

      22fadf82be61a6f743b5ddaeb826adf6ee03ad7b

    • SHA256

      bbaad73e083bbc67ed64d13bb5c1e1afc0f174338d74473bea37ea44cd2c9442

    • SHA512

      d7257955c0cfb3989e21fc1027a15da785e29dba52e2928bf2da31421f49e4eb6f2c72303b5ef305e71d6998325b9f6b958cf879c64e8769ebc7c9ecb037adea

    • SSDEEP

      786432:IH8h75bGR08bkxacKSDAh9jGrQo3XKhlmlIp/onJlaX:IMtyR084//DI5k3XKh2Ipg/A

    Score
    8/10
    discovery

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks