Overview

overview

7

Static

static

3

2024-06-27...ot.exe

windows7-x64

7

2024-06-27...ot.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-06-27_496b8c3c0d8c246c35ad1f6b60f19f44_magniber_qakbot

  • Size

    4.7MB

  • Sample

    240627-jbze8syepe

  • MD5

    496b8c3c0d8c246c35ad1f6b60f19f44

  • SHA1

    b669212553d8a5d2e36dbb398f4a44cff8b16bd9

  • SHA256

    cb5c23af689df5fe7475b17eccb02f939e6e7a5c0872f372a028980b8477d4e0

  • SHA512

    cf09ef70f3e0240bfb81f47e402a5471f3c80e9244a7971869710bf5c67521927d5dfb3d50b611bd8742328bb638ce0e65963c3afa8f28bd8c19197ce807eeb4

  • SSDEEP

    98304:rfAE+xBgUbR3S8UqSUcjKW5GTmDYSiU0aPfyK000ibS:r7+xBbA8TW/ckIU0cqg0iO

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-06-27_496b8c3c0d8c246c35ad1f6b60f19f44_magniber_qakbot

    • Size

      4.7MB

    • MD5

      496b8c3c0d8c246c35ad1f6b60f19f44

    • SHA1

      b669212553d8a5d2e36dbb398f4a44cff8b16bd9

    • SHA256

      cb5c23af689df5fe7475b17eccb02f939e6e7a5c0872f372a028980b8477d4e0

    • SHA512

      cf09ef70f3e0240bfb81f47e402a5471f3c80e9244a7971869710bf5c67521927d5dfb3d50b611bd8742328bb638ce0e65963c3afa8f28bd8c19197ce807eeb4

    • SSDEEP

      98304:rfAE+xBgUbR3S8UqSUcjKW5GTmDYSiU0aPfyK000ibS:r7+xBbA8TW/ckIU0cqg0iO

    Score
    7/10
    spywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks