quasar | 375f99f85beb8bc69029429b3c5317543957ffa7ba559da6fd4b930ce48bfc7c | Triage

Submit
Reports

Overview

overview

Static

static

3

index.exe

windows10-2004-x64

Sharing

General

Target

index.exe
Size

36.2MB
Sample

240627-13gg6swfmn
MD5

aa55396d7df072973d0ea88ec505579d
SHA1

8a9b057a859cee6ca3053dc0ef05089bbf2ac4ab
SHA256

375f99f85beb8bc69029429b3c5317543957ffa7ba559da6fd4b930ce48bfc7c
SHA512

969b634ed5aa5075b9b48ebabcf0e9093c530578ec292e67582db16f84437f4a2823130e354b0054f909ec361b145dc4236b57a9991d4974738924f44e06a2ff
SSDEEP

393216:f1Du8BtuBw2FEL3Z3aLUoQvo6LP/SgbSpYvKEh1EdKwlGQKPJuGsiTfREsrgCYfG:fMguj8Q4VfvvqFTrYmi

Score

10^/10

quasar seroxen spyware trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

index.exe

Resource

win10v2004-20240508-en

quasar seroxen spyware trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

quasar

Version

3.1.5

Botnet

SeroXen

C2

147.185.221.20:47638

Mutex

$Sxr-GV6wZsGZZMeZ3qfenc

Attributes

encryption_key
pCYwpdVg3UP8ZY0FIEl9
install_name
Client.exe
log_directory
Logs
reconnect_delay
3000
startup_key
Windows Defender Anti-Malware Disable Startup
subdirectory
SubDir

Targets

- Target
  
  index.exe
- Size
  
  36.2MB
- MD5
  
  aa55396d7df072973d0ea88ec505579d
- SHA1
  
  8a9b057a859cee6ca3053dc0ef05089bbf2ac4ab
- SHA256
  
  375f99f85beb8bc69029429b3c5317543957ffa7ba559da6fd4b930ce48bfc7c
- SHA512
  
  969b634ed5aa5075b9b48ebabcf0e9093c530578ec292e67582db16f84437f4a2823130e354b0054f909ec361b145dc4236b57a9991d4974738924f44e06a2ff
- SSDEEP
  
  393216:f1Du8BtuBw2FEL3Z3aLUoQvo6LP/SgbSpYvKEh1EdKwlGQKPJuGsiTfREsrgCYfG:fMguj8Q4VfvvqFTrYmi
Score

10^/10

quasar seroxen spyware trojan
- Quasar RAT
  Quasar is an open source Remote Access Tool.
  trojan spyware quasar
- Quasar payload
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

quasarseroxenspywaretrojan

© 2018-2025

Terms | Privacy