Overview

overview

10

Static

static

10

test.exe

macos-10.15-amd64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    test.exe

  • Size

    3.2MB

  • Sample

    230530-t1y6waaf96

  • MD5

    27c355c14c674536587b643679ee4f95

  • SHA1

    856eab4787c35c5ff8a6fcc924203f51c7eb437f

  • SHA256

    f657297cd0e35a5937e8d3fe3318e34f3810f13de9ad94452ef79376ed85217c

  • SHA512

    e982891853a97891218bc122ed490060b0c89d59ca747cff3bc7d0fbfed952d9caaea98f50818ec39a4ed84d0d03bea7662d8136513c77bf9ea9c7f7f51e489e

  • SSDEEP

    49152:OvGlL26AaNeWgPhlmVqvMQ7XSK3xDEDw7k/JxKoGd0FjV/THHB72eh2NT:OvGL26AaNeWgPhlmVqkQ7XSK3xYgk

Score
10/10
quasarsafety frame workmacos

Malware Config

Extracted

Family

quasar

Version

1.4.1

Botnet

Safety Frame Work

C2

212.154.101.132:3000

Mutex

1b3adac2-334a-4914-b42a-429f32ec011f

Attributes
  • encryption_key

    8738101E98DC472C5F4C9FE5E109DEF1CA883172

  • install_name

    test.exe

  • log_directory

    Logs

  • reconnect_delay

    2

  • startup_key

    Quasar Client Startup

  • subdirectory

    SubSecurity

Targets

    • Target

      test.exe

    • Size

      3.2MB

    • MD5

      27c355c14c674536587b643679ee4f95

    • SHA1

      856eab4787c35c5ff8a6fcc924203f51c7eb437f

    • SHA256

      f657297cd0e35a5937e8d3fe3318e34f3810f13de9ad94452ef79376ed85217c

    • SHA512

      e982891853a97891218bc122ed490060b0c89d59ca747cff3bc7d0fbfed952d9caaea98f50818ec39a4ed84d0d03bea7662d8136513c77bf9ea9c7f7f51e489e

    • SSDEEP

      49152:OvGlL26AaNeWgPhlmVqvMQ7XSK3xDEDw7k/JxKoGd0FjV/THHB72eh2NT:OvGL26AaNeWgPhlmVqkQ7XSK3xYgk

    Score
    1/10
    behavioral1

MITRE ATT&CK Matrix

Tasks