Overview

overview

10

Static

static

10

MMLo7.Rat.rar

windows7-x64

7

MMLo7.Rat.rar

windows10-1703-x64

7

MMLo7.Rat.rar

windows10-2004-x64

10

MMLo7 Rat.exe

windows7-x64

1

MMLo7 Rat.exe

windows10-1703-x64

5

MMLo7 Rat.exe

windows10-2004-x64

10

turingmachine.exe

windows7-x64

1

turingmachine.exe

windows10-1703-x64

5

turingmachine.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    MMLo7.Rat.rar

  • Size

    5.7MB

  • MD5

    4747547f047d47bd37bc0d1b65625694

  • SHA1

    827e3f9ca857ed95ef8185c80e5fa85fdffa28e4

  • SHA256

    091833fb986ac8a78a9a33ae7852d2b02d510348bdcb915d4e2e51a6de27f64a

  • SHA512

    3336de360626d125c4777d626a0790c69faf209c642d99d085cd72f92b9e5ba93aca9f9c92d81cb1e3b2ee21f6ff12cf9c6fe6ecbe9554ad846fa1cd74874241

  • SSDEEP

    98304:HtkSjvhd8cMOBhzp1svAJFF5N7nicdRaDzmLW/nJHksov7iUsPIUDjvEQnQLligi:HtBjJd8vazEQFPN7tAeaBLNUsPIUvMUL

Score
10/10
quasar

Malware Config

Extracted

Family

quasar

Attributes
  • reconnect_delay

    5000

Signatures

  • Quasar family
    quasar
  • Quasar payload 2 IoCs
  • Unsigned PE 8 IoCs

    Checks for missing Authenticode signature.

Files

  • MMLo7.Rat.rar
    .rar
  • ComponentFactory.Krypton.Toolkit.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • ComponentFactory.Krypton.Toolkit.pdb
  • Krypton.Toolkit.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Krypton.Toolkit.xml
    .xml
  • MMLo7 Rat.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • MMLo7 Rat.exe.config
    .xml
  • Mono.Cecil.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Mono.Nat.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Profiles/Default.xml
  • Vestris.ResourceLib.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • client.bin
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • settings.xml
  • turingmachine.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • turingmachine.exe.config
    .xml