quasar | 31d1488e6d5e80fd6d1aba0b73f3ff7ca69d65f649298358acff26aceffdca57 | Triage

Submit
Reports

Overview

overview

Static

static

Quasar.exe

windows7-x64

Quasar.exe

windows10-2004-x64

Sharing

General

Target

Quasar.exe
Size

1.2MB
Sample

240604-srz65sbd71
MD5

061e986ef7b1a4c883f0da79f96537c0
SHA1

1ec4496a6dd4e0eae05cff977ae6d0fcb77dd022
SHA256

31d1488e6d5e80fd6d1aba0b73f3ff7ca69d65f649298358acff26aceffdca57
SHA512

cd68ed61957b3aaed5eba72a44c81adf04712710355ab742f23d34725801efe82cc57a37390ae61bf32f4d4fae12c5165642c32076faa5005af634febff9ed91
SSDEEP

12288:NJqRU1HYLsYebQNVBBBYiL9l/bFfpBBBBBBBBBBBBk5:vtYBBBYiLvzFfpBBBBBBBBBBBBk5

Score

10^/10

quasar spyware trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

Quasar.exe

Resource

win7-20240508-en

quasar spyware trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

Quasar.exe

Resource

win10v2004-20240426-en

quasar spyware trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  Quasar.exe
- Size
  
  1.2MB
- MD5
  
  061e986ef7b1a4c883f0da79f96537c0
- SHA1
  
  1ec4496a6dd4e0eae05cff977ae6d0fcb77dd022
- SHA256
  
  31d1488e6d5e80fd6d1aba0b73f3ff7ca69d65f649298358acff26aceffdca57
- SHA512
  
  cd68ed61957b3aaed5eba72a44c81adf04712710355ab742f23d34725801efe82cc57a37390ae61bf32f4d4fae12c5165642c32076faa5005af634febff9ed91
- SSDEEP
  
  12288:NJqRU1HYLsYebQNVBBBYiL9l/bFfpBBBBBBBBBBBBk5:vtYBBBYiLvzFfpBBBBBBBBBBBBk5
Score

10^/10

quasar spyware trojan
- Quasar RAT
  Quasar is an open source Remote Access Tool.
  trojan spyware quasar
- Quasar payload
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

quasarspywaretrojan

behavioral2

quasarspywaretrojan

© 2018-2024

Terms | Privacy