Malware Analysis Report

2024-11-13 16:18

Sample ID 240825-s1v9jstaqj
Target SXN__2_.zip
SHA256 2396c7f7083454cce5ac583aeba0410dbc3029e4d480335d43920e877b0c6e66
Tags
agilenet quasar
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

2396c7f7083454cce5ac583aeba0410dbc3029e4d480335d43920e877b0c6e66

Threat Level: Known bad

The file SXN__2_.zip was found to be: Known bad.

Malicious Activity Summary

agilenet quasar

Quasar family

Quasar payload

Obfuscated with Agile.Net obfuscator

Unsigned PE

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2024-08-25 15:36

Signatures

Quasar family

quasar

Quasar payload

Description Indicator Process Target
N/A N/A N/A N/A
N/A N/A N/A N/A

Obfuscated with Agile.Net obfuscator

agilenet
Description Indicator Process Target
N/A N/A N/A N/A
N/A N/A N/A N/A
N/A N/A N/A N/A

Unsigned PE

Description Indicator Process Target
N/A N/A N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-08-25 15:36

Reported

2024-08-25 15:39

Platform

win11-20240802-en

Max time kernel

30s

Max time network

144s

Command Line

C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\SXN__2_.zip

Signatures

N/A

Processes

C:\Windows\Explorer.exe

C:\Windows\Explorer.exe /idlist,,C:\Users\Admin\AppData\Local\Temp\SXN__2_.zip

Network

Files

N/A