General

  • Target

    ZEROXEN.exe

  • Size

    9.4MB

  • Sample

    240315-ns9prafc9x

  • MD5

    cc32985b3b667f870e3be1134fc6707d

  • SHA1

    818c0484951bced0e42401c57ca1630e2b58c016

  • SHA256

    f3b2d4abfdf0fde27e83d3c9cb09313b2fb92ab9a7cccf713af7c1ceb77eec99

  • SHA512

    d6cf3f2b235120bf112aec63f2c3471e01a378e378df09b4b99b1210af55302e60c190e79bc7a92f97b73a60df31b8865a295b55ea6a3c6803ce6514095c6549

  • SSDEEP

    196608:TzEXLdKV7k1UwD4Tiwb4Ey6vdQmRfaycBIGpEVSE01zRY:HYwk1Uk4Tiwb5dQ79Fz1z

Malware Config

Targets

    • Target

      ZEROXEN.exe

    • Size

      9.4MB

    • MD5

      cc32985b3b667f870e3be1134fc6707d

    • SHA1

      818c0484951bced0e42401c57ca1630e2b58c016

    • SHA256

      f3b2d4abfdf0fde27e83d3c9cb09313b2fb92ab9a7cccf713af7c1ceb77eec99

    • SHA512

      d6cf3f2b235120bf112aec63f2c3471e01a378e378df09b4b99b1210af55302e60c190e79bc7a92f97b73a60df31b8865a295b55ea6a3c6803ce6514095c6549

    • SSDEEP

      196608:TzEXLdKV7k1UwD4Tiwb4Ey6vdQmRfaycBIGpEVSE01zRY:HYwk1Uk4Tiwb5dQ79Fz1z

    Score
    10/10
    • Quasar RAT

      Quasar is an open source Remote Access Tool.

    • Quasar payload

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks