quasar | bce1a795abd87b0db2ea2577de28ade5f46d275e47f0424fbcd728684f939c0b | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1

Roblox-Ima...er.bat

windows11-21h2-x64

Sharing

General

Target

Roblox-Image-Logger.bat
Size

14.9MB
Sample

240405-zv5dladc5w
MD5

922173bce190a729a7541904e53ffba5
SHA1

d98240a8deb45581eb15e1ec4d5238f914bee80d
SHA256

bce1a795abd87b0db2ea2577de28ade5f46d275e47f0424fbcd728684f939c0b
SHA512

1b4cad22fe047018dc95825b7faaa21b0b0936f1de85886abbf5ca85b59d5fab8da35921758df62fe614e5473b664e6000a95218615bfbd41938149a07e81f5f
SSDEEP

49152:hx3AG5hYogP5o/nsX9xf0HFVpg0bozDhNr2IhX25cDX591URFiVmjGrEcg9FKdzt:g

Score

10^/10

quasar spyware trojan

Static task

static1

Behavioral task

behavioral1

Sample

Roblox-Image-Logger.bat

Resource

win11-20240221-en

quasar spyware trojan

windows11-21h2-x64

11 signatures

150 seconds

Malware Config

Extracted

Family

quasar

Attributes

reconnect_delay
1000

Targets

- Target
  
  Roblox-Image-Logger.bat
- Size
  
  14.9MB
- MD5
  
  922173bce190a729a7541904e53ffba5
- SHA1
  
  d98240a8deb45581eb15e1ec4d5238f914bee80d
- SHA256
  
  bce1a795abd87b0db2ea2577de28ade5f46d275e47f0424fbcd728684f939c0b
- SHA512
  
  1b4cad22fe047018dc95825b7faaa21b0b0936f1de85886abbf5ca85b59d5fab8da35921758df62fe614e5473b664e6000a95218615bfbd41938149a07e81f5f
- SSDEEP
  
  49152:hx3AG5hYogP5o/nsX9xf0HFVpg0bozDhNr2IhX25cDX591URFiVmjGrEcg9FKdzt:g
Score

10^/10

quasar spyware trojan
- Quasar RAT
  Quasar is an open source Remote Access Tool.
  trojan spyware quasar
- Quasar payload
- Deletes itself
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

quasarspywaretrojan

© 2018-2025

Terms | Privacy