quasar | d0eb86256810241b25b8fcb3536d6018f804666e32ee6c6de43cb47c2850750a | Triage

Submit
Reports

Overview

overview

Static

static

Client-buielt.exe

windows7-x64

Client-buielt.exe

windows10-2004-x64

Sharing

General

Target

Client-buielt.exe
Size

175KB
Sample

240620-eaxg2a1fkr
MD5

e40f664aa04b84b93c3abb4feb9aaab3
SHA1

e569e97bad696b2fca937e6533ec4c35800bc3ab
SHA256

d0eb86256810241b25b8fcb3536d6018f804666e32ee6c6de43cb47c2850750a
SHA512

2360744425d354a8dc94538bcfbbcf93d92e74bb0861fd57ea99be122f24bd9685026e683de913955fe6e923db31577707d1154c9b345b3bb319d77ad1ebd452
SSDEEP

3072:4PynXIa08VX2XqHKyVg/bbRgPqwc/Ybdr5OD64KwSJ8zIcWGpt18irDWlCjyCgB:N+qHKyVSWPoYbra64+8zIczNrDWlSyCc

Score

10^/10

quasar spyware trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

Client-buielt.exe

Resource

win7-20240508-en

quasar spyware trojan

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

Client-buielt.exe

Resource

win10v2004-20240508-en

quasar spyware trojan

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  Client-buielt.exe
- Size
  
  175KB
- MD5
  
  e40f664aa04b84b93c3abb4feb9aaab3
- SHA1
  
  e569e97bad696b2fca937e6533ec4c35800bc3ab
- SHA256
  
  d0eb86256810241b25b8fcb3536d6018f804666e32ee6c6de43cb47c2850750a
- SHA512
  
  2360744425d354a8dc94538bcfbbcf93d92e74bb0861fd57ea99be122f24bd9685026e683de913955fe6e923db31577707d1154c9b345b3bb319d77ad1ebd452
- SSDEEP
  
  3072:4PynXIa08VX2XqHKyVg/bbRgPqwc/Ybdr5OD64KwSJ8zIcWGpt18irDWlCjyCgB:N+qHKyVSWPoYbra64+8zIczNrDWlSyCc
Score

10^/10

quasar spyware trojan
- Quasar RAT
  Quasar is an open source Remote Access Tool.
  trojan spyware quasar
- Quasar payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

quasarspywaretrojan

behavioral2

quasarspywaretrojan

© 2018-2024

Terms | Privacy