General
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://github.com/Cxyd3n/6b6tIkeaDupeV2/releases/download/6b6tdupe/bb2t.exe
Resource
win7-20220812-en
15 signatures
150 seconds
Malware Config
Extracted
Family
quasar
Version
1.4.0
Botnet
Office04
C2
68.106.199.207:4782
Mutex
79767d1b-d2c9-404d-ad3a-da0f22bc8891
Attributes
-
encryption_key
A2350D9A98E92DB06918FD3F3160EEE69BA664AB
-
install_name
Client.exe
-
log_directory
Logs
-
reconnect_delay
3000
-
startup_key
Quasar Client Startup
-
subdirectory
SubDir
Targets
-
-
Target
https://github.com/Cxyd3n/6b6tIkeaDupeV2/releases/download/6b6tdupe/bb2t.exe
-
Quasar payload
-
Downloads MZ/PE file
-
Executes dropped EXE
-