Overview

overview

10

Static

static

3

qbittorren...up.exe

windows7-x64

10

qbittorren...up.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    qbittorrent_4.5.5_x64_setup.exe

  • Size

    31.5MB

  • Sample

    231022-t7qhbace92

  • MD5

    a1e3d62bb16c2fef5fba7d2899796239

  • SHA1

    841c7c16a30ca3a2ec77148b2fcd250ce9335830

  • SHA256

    a95a39a8701661fcd9eec6dbf78f8099be1edfa145fb7d43a0105ec82f97df8f

  • SHA512

    121401f7df8f4cd01ecc5205510ad4d824ca7208ddb69bb9a5e4678359e82005d76b20467662878975a739f41236edc8581f61279bae278dbb5c7206058def59

  • SSDEEP

    786432:rDRS7fOdUC+EQNLErJ5L8xPEP9vnzfrnfHo9ft03Pvy96VgQCGq7NBwq:rp1+EQNLkJO2pnvnfIfq3P6YCn7H

Score
10/10
bazarloaderdiscoverydropperloader

Malware Config

Targets

    • Target

      qbittorrent_4.5.5_x64_setup.exe

    • Size

      31.5MB

    • MD5

      a1e3d62bb16c2fef5fba7d2899796239

    • SHA1

      841c7c16a30ca3a2ec77148b2fcd250ce9335830

    • SHA256

      a95a39a8701661fcd9eec6dbf78f8099be1edfa145fb7d43a0105ec82f97df8f

    • SHA512

      121401f7df8f4cd01ecc5205510ad4d824ca7208ddb69bb9a5e4678359e82005d76b20467662878975a739f41236edc8581f61279bae278dbb5c7206058def59

    • SSDEEP

      786432:rDRS7fOdUC+EQNLErJ5L8xPEP9vnzfrnfHo9ft03Pvy96VgQCGq7NBwq:rp1+EQNLkJO2pnvnfIfq3P6YCn7H

    Score
    10/10
    bazarloaderdiscoverydropperloader

    • Bazar Loader

      Detected loader normally used to deploy BazarBackdoor malware.

      loaderdropperbazarloader

    • Bazar/Team9 Loader payload

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks