General

  • Target

    http://103.30.76.56:8000

  • Sample

    231116-ygzqhsfa53

Malware Config

Extracted

Family

quasar

Version

1.4.1

Botnet

Office04

C2

45.32.119.154:4782

Mutex

54a78e9b-95fb-449b-9a22-c22b0cb9bedb

Attributes
  • encryption_key

    8D3F702A8D4FBFC89815720AB5EE7FFAA0B223D6

  • install_name

    Client.exe

  • log_directory

    Logs

  • reconnect_delay

    3000

  • startup_key

    Microsoft System Run

  • subdirectory

    SubDir

Targets

MITRE ATT&CK Enterprise v15

Tasks