Overview

overview

10

Static

static

10

a42e1d844b...93.exe

windows7-x64

a42e1d844b...93.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    a42e1d844b3882fe2e19dc1aa0122193

  • Size

    317KB

  • MD5

    a42e1d844b3882fe2e19dc1aa0122193

  • SHA1

    654c23dbe36679ad0962c3870d2df2de2cf7d337

  • SHA256

    121f3481aec5024b627b9cffdcba91a1bdacc789f5c0bc44570bbef8aee6f0c7

  • SHA512

    a409c379e4ced956bf53b660012aee98e470dfad0fdef954163d6adc72ceb989a40b553cc19b8cb98fe9921bd0392025ee426131885880702b8ee72691af1f86

  • SSDEEP

    6144:tXmEEq6nC8stfkwjwLpgNOxeCiJR/yooib/TWqly5m0:Bm3C8WfkEzqo1WqlI

Score
10/10
quasar

Malware Config

Signatures

  • Contains code to disable Windows Defender 1 IoCs

    A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.

  • Quasar family
    quasar
  • Quasar payload 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a42e1d844b3882fe2e19dc1aa0122193
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections