General

  • Target

    synapse-v2-launcher-12-5-22.zip

  • Size

    80.3MB

  • Sample

    230423-tplfmsga9v

  • MD5

    9e0aeab6cb22ef80c202fab5181b8a2d

  • SHA1

    6177bc2b7e233a04153dcdfef59276f88100ce30

  • SHA256

    4a0f85cd7c39f90298bd752547765b58f7823cadd424c9f3ae54235bb894af35

  • SHA512

    a622aabb0b8e9192df0c5bb57a3ccb80a87ef33d8bd23ff97481f1055c9d5bc2bfca11c394dcae46d0c44ff0bb5a0ecbb3203fda608f0623455f1608c233685c

  • SSDEEP

    1572864:3DWCwerG4hPvcfaaW1NnHdnpgHUjEWOceVE0SOBSOddN:3D3weyIAaJnHdnp4UgWFeVE0SOBSOdX

Malware Config

Extracted

Family

quasar

Version

1.4.1

Botnet

Client Server Runtime Process

C2

botnetps.ddns.net:7788

Mutex

73a7a3ae-9e7f-4634-9425-80eaaded0637

Attributes
  • encryption_key

    86012C170FF838996242C2B7E10C4FB0D28A8729

  • install_name

    RobloxStudioLauncherBeta.exe

  • log_directory

    Logs

  • reconnect_delay

    3000

  • startup_key

    Update

  • subdirectory

    Roblox

Targets

    • Target

      synapse-v2-launcher-12-5-22.zip

    • Size

      80.3MB

    • MD5

      9e0aeab6cb22ef80c202fab5181b8a2d

    • SHA1

      6177bc2b7e233a04153dcdfef59276f88100ce30

    • SHA256

      4a0f85cd7c39f90298bd752547765b58f7823cadd424c9f3ae54235bb894af35

    • SHA512

      a622aabb0b8e9192df0c5bb57a3ccb80a87ef33d8bd23ff97481f1055c9d5bc2bfca11c394dcae46d0c44ff0bb5a0ecbb3203fda608f0623455f1608c233685c

    • SSDEEP

      1572864:3DWCwerG4hPvcfaaW1NnHdnpgHUjEWOceVE0SOBSOddN:3D3weyIAaJnHdnp4UgWFeVE0SOBSOdX

    Score
    1/10

MITRE ATT&CK Matrix

Tasks