General

  • Target

    642dc820c3da7ff0a22ccdc30aa3ef40N

  • Size

    2.0MB

  • MD5

    642dc820c3da7ff0a22ccdc30aa3ef40

  • SHA1

    5ffe008fb26a6c1b75f65f7ceca702b88a26a334

  • SHA256

    04556df7c94ff9d374a46bd917f1902acfa7d9d8face25a47e8a6fa07a97e823

  • SHA512

    d769596b0c9a21344301d0448f2b34abed774f304e7e39b862176fcda62c58218a880485930d76d3ab51fe81362b6f21b7f4199528e996c40daa610934623f89

  • SSDEEP

    24576:su6J33O0c+JY5UZ+XC0kGso6FaI1IXgM6YmenKKSUlmDaGJTA4Pqa6jUvOkQwKYz:2u0c++OCvkGs9Fap5aLKLkDl+dUvO9Y5

Score
10/10

Malware Config

Signatures

  • Quasar family
  • Quasar payload 1 IoCs
  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 642dc820c3da7ff0a22ccdc30aa3ef40N
    .exe windows:5 windows x86 arch:x86

    eb97e4fc5518ac300a92a11673825e0b


    Headers

    Imports

    Sections