Overview

overview

7

Static

static

3

2024-05-23...ot.exe

windows7-x64

7

2024-05-23...ot.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-23_e92e085e068ae3e044d3c18273c6d52e_magniber_qakbot

  • Size

    4.7MB

  • Sample

    240523-mylpfadf7y

  • MD5

    e92e085e068ae3e044d3c18273c6d52e

  • SHA1

    5b93d3a7409c6fdf79fc3531bb20bf9802752727

  • SHA256

    5516c47eeb2d5127eafcdfb050c7e339dc93879f40e3e15ce1c6ecb060327908

  • SHA512

    8184e9719eac55a68cfb48eebbc0015e22add854f8ed1643d4a96c96b14e5b3678db61d31538992687a4eda70ebe99fe0a66bbbf80d0c9933e599a11ea1af7d7

  • SSDEEP

    98304:aJeV/ztZBee1oiImuUiK9N9EGQKF9lSHbr7aAD527BWG:4S/hLkmg4EpbrOAVQBWG

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-05-23_e92e085e068ae3e044d3c18273c6d52e_magniber_qakbot

    • Size

      4.7MB

    • MD5

      e92e085e068ae3e044d3c18273c6d52e

    • SHA1

      5b93d3a7409c6fdf79fc3531bb20bf9802752727

    • SHA256

      5516c47eeb2d5127eafcdfb050c7e339dc93879f40e3e15ce1c6ecb060327908

    • SHA512

      8184e9719eac55a68cfb48eebbc0015e22add854f8ed1643d4a96c96b14e5b3678db61d31538992687a4eda70ebe99fe0a66bbbf80d0c9933e599a11ea1af7d7

    • SSDEEP

      98304:aJeV/ztZBee1oiImuUiK9N9EGQKF9lSHbr7aAD527BWG:4S/hLkmg4EpbrOAVQBWG

    Score
    7/10
    spywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks