General

  • Target

    Venom 2.8 FINAL.zip

  • Size

    32.1MB

  • MD5

    ff9a466df66361d030a6d61603b9738c

  • SHA1

    65e8a96841a329335aacc92d3d2c4fb60f03ad25

  • SHA256

    bace996d520f87342bf7ed61cef02607efcda1139d887de18306458eee56d4f8

  • SHA512

    d5e2068d3d8b907d8a611beb14390881f71012727ea0dc6395547f3ce43a041a7d239b47bd982aeb9ef7a7583b8b3c37cd91e9c75bf0269d3e82055000491d5e

  • SSDEEP

    786432:Nu1uHxf8nFomn63ou9oRB8Tgq6QVxAWOjh:uuHxf8nFomAo5b8TgqSWOjh

Score
10/10

Malware Config

Extracted

Family

quasar

Attributes
  • reconnect_delay

    5000

Signatures

  • Quasar family
  • Quasar payload 1 IoCs
  • Obfuscated with Agile.Net obfuscator 1 IoCs

    Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

Files

  • Venom 2.8 FINAL.zip
    .zip
  • Venom 2.8 CRACKED - FINAL/VenomRemote_Cracked.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Venom 2.8 CRACKED - FINAL/client.bin
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • Venom 2.8 CRACKED - FINAL/cracked by cortexnet.cc.txt
  • Venom 2.8 CRACKED - FINAL/settings.xml