8ae0f170187701c391a7ef44d957dde423be508bff66e13ad7e375153230011a

Submit
Reports

Overview

overview

Static

static

SeroXenPTO.rar

windows10-2004-x64

SeroXenPTO...to.dll

windows10-2004-x64

SeroXenPTO/C5VM.dll

windows10-2004-x64

SeroXenPTO...re.dll

windows10-2004-x64

SeroXenPTO...ll.dll

windows10-2004-x64

SeroXenPTO...ok.dll

windows10-2004-x64

SeroXenPTO...ET.dll

windows10-2004-x64

SeroXenPTO...im.dll

windows10-2004-x64

SeroXenPTO...er.dll

windows10-2004-x64

SeroXenPTO...ce.dll

windows10-2004-x64

SeroXenPTO...es.dll

windows10-2004-x64

SeroXenPTO...ns.dll

windows10-2004-x64

SeroXenPTO...rk.dll

windows10-2004-x64

SeroXenPTO...db.dll

windows10-2004-x64

SeroXenPTO...db.dll

windows10-2004-x64

SeroXenPTO...ks.dll

windows10-2004-x64

SeroXenPTO...il.dll

windows10-2004-x64

SeroXenPTO...at.dll

windows10-2004-x64

SeroXenPTO...th.dll

windows10-2004-x64

SeroXenPTO...lt.xml

windows10-2004-x64

SeroXenPTO...ts.dll

windows10-2004-x64

SeroXenPTO...on.dll

windows10-2004-x64

SeroXenPTO...et.dll

windows10-2004-x64

SeroXenPTO...en.exe

windows10-2004-x64

SeroXenPTO...TO.exe

windows10-2004-x64

SeroXenPTO...on.dll

windows10-2004-x64

SeroXenPTO...le.dll

windows10-2004-x64

SeroXenPTO...ib.dll

windows10-2004-x64

SeroXenPTO...bf.bin

windows10-2004-x64

SeroXenPTO/dnlib.dll

windows10-2004-x64

SeroXenPTO...et.dll

windows10-2004-x64

SeroXenPTO...gs.xml

windows10-2004-x64

Analysis

max time kernel
92s
max time network
101s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
28-04-2024 03:21

Sharing

Copy URL

Twitter E-mail

Static task

static1

quasar

3 signatures

Behavioral task

behavioral1

Sample

SeroXenPTO.rar

Resource

win10v2004-20240419-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

SeroXenPTO/BouncyCastle.Crypto.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

SeroXenPTO/C5VM.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

SeroXenPTO/Cake.Core.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

SeroXenPTO/Cake.Powershell.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

SeroXenPTO/Gma.System.MouseKeyHook.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

SeroXenPTO/Logic.NET.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

SeroXenPTO/Microsoft.VisualStudio.CodeCoverage.Shim.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

SeroXenPTO/Microsoft.VisualStudio.TestPlatform.MSTest.TestAdapter.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

SeroXenPTO/Microsoft.VisualStudio.TestPlatform.MSTestAdapter.PlatformServices.Interface.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

SeroXenPTO/Microsoft.VisualStudio.TestPlatform.MSTestAdapter.PlatformServices.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

SeroXenPTO/Microsoft.VisualStudio.TestPlatform.TestFramework.Extensions.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

SeroXenPTO/Microsoft.VisualStudio.TestPlatform.TestFramework.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

SeroXenPTO/Mono.Cecil.Mdb.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

SeroXenPTO/Mono.Cecil.Pdb.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

SeroXenPTO/Mono.Cecil.Rocks.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

SeroXenPTO/Mono.Cecil.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

SeroXenPTO/Open.Nat.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

SeroXenPTO/PTOAuth.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

SeroXenPTO/Profiles/Default.xml

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

SeroXenPTO/Quasar.Common.Tests.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

SeroXenPTO/Quasar.Common.dll

Resource

win10v2004-20240226-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

SeroXenPTO/Renci.SshNet.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

SeroXenPTO/SeroXen.exe

Resource

win10v2004-20240419-en

quasar evasion spyware themida trojan

windows10-2004-x64

9 signatures

150 seconds

Behavioral task

behavioral25

Sample

SeroXenPTO/SeroXenPTO.exe

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

SeroXenPTO/System.Management.Automation.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

SeroXenPTO/System.ValueTuple.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

SeroXenPTO/Vestris.ResourceLib.dll

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

SeroXenPTO/client_obf.bin

Resource

win10v2004-20240419-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral30

Sample

SeroXenPTO/dnlib.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

SeroXenPTO/protobuf-net.dll

Resource

win10v2004-20240419-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

SeroXenPTO/settings.xml

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

SeroXenPTO/Quasar.Common.Tests.dll
Size

7KB
MD5

a750cb6b455577ca1f5d7679cd7b3bc3
SHA1

fd74c8f68ef0fa7d10f96289b07b5ba09b18a6a0
SHA256

8d4e1a22b89a247dbfb98f63e82d338b2138630d6ab6b40e2192bc0eaff327d9
SHA512

d18bac37580ae5c88637d497abed6c1bde58706a27e887085045c93c60b374600af356221b4aac4cb3aaa1d605322cfbaba96ee51e4b0c5deda518d333f2c5a4
SSDEEP

96:5W2zmDjGTY4XpsGD/pzLrSS/B4uhCd08ijAm6tuX8G7GXUB9tY:kyTYisMFSS/B7hCd0lGIWUB9O

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\SeroXenPTO\Quasar.Common.Tests.dll,#1
1⤵
PID:1516

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads