General
-
Target
main.zip
-
Size
1.2MB
-
Sample
241124-1l9sdsxkcl
-
MD5
34bd7cb79b747b689eb0a7c1e6429bff
-
SHA1
2ae1849a806ddb6651d36e8a9cb75911ac0c9d28
-
SHA256
370a1ac54255d09c5870186a4156f6f58894876c66f1b249a082d3cb91f482af
-
SHA512
bef00c5d12069628636fb7313c5a690d2e80c51c8ffce73fcf05beea422af8ff13e4af3ff56df99786cc32309f5435ae02074e18d447c094048eb0c9c492b025
-
SSDEEP
24576:Ht03E4sy0cXUCnlnl3zz5rNeAaEcbMMZ6VnTFepJCyCSBFt8:qlsjCnll3zMExw007B4
Behavioral task
behavioral1
Sample
Solara-Download-main/Boostrapper.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
Solara-Download-main/Boostrapper.exe
Resource
win10v2004-20241007-en
Behavioral task
behavioral3
Sample
Solara-Download-main/Build-Client.exe
Resource
win7-20240903-en
Behavioral task
behavioral4
Sample
Solara-Download-main/Build-Client.exe
Resource
win10v2004-20241007-en
Behavioral task
behavioral5
Sample
Solara-Download-main/Solara.exe
Resource
win7-20240729-en
Behavioral task
behavioral6
Sample
Solara-Download-main/Solara.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
quasar
1.4.1
Office04
192.168.0.113:4782
c82ea6b0-d255-45fb-b0eb-547ab14c0e9e
-
encryption_key
045BFCAC42C40445C0D8EBEF569DD1BF4BB62A56
-
install_name
Build-client.exe
-
log_directory
Logs
-
reconnect_delay
3000
-
startup_key
Quasar Client Startup
-
subdirectory
SubDir
Targets
-
-
Target
Solara-Download-main/Boostrapper.exe
-
Size
7B
-
MD5
816af85a08a7a0cd80f4243807ee2951
-
SHA1
33201a4bdd57b6ca2f6c43a3cc46df3807902a72
-
SHA256
5954265b82a4668ec0f016513f97c215e8546ab551b38e623a01c8b67659fc2c
-
SHA512
01096092ee5b1597db74e983d96ff072e32f674bc248c488336f4f94216c1a648a322cc823f536c4f7e7d831f79a5634d9c6f4fd1711b327d8c45ce3cf950b59
Score1/10 -
-
-
Target
Solara-Download-main/Build-Client.exe
-
Size
3.1MB
-
MD5
c34d921ff3487c05cfff4991df196535
-
SHA1
c9c7ae70b2020a3f80996a1399b6eb160cfbf72c
-
SHA256
2bcc519da18324c5cfde4f0e7a2e6fa3d7e8b2c3c020ced81f07460f77476ed3
-
SHA512
35f51730586e8107a87aadf9bb902282285aabb2ef9ebd0e119d76e56a80f7608eb6bc799392a7c99cfd1e83e9d9626780b9b0bbc170888a4de43fd1cb360f88
-
SSDEEP
49152:SvzlL26AaNeWgPhlmVqvMQ7XSK9gRJ6/bR3LoGd3kTHHB72eh2NT:SvpL26AaNeWgPhlmVqkQ7XSK9gRJ6R
-
Quasar family
-
Quasar payload
-
Executes dropped EXE
-
-
-
Target
Solara-Download-main/Solara.exe
-
Size
1B
-
MD5
68b329da9893e34099c7d8ad5cb9c940
-
SHA1
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
-
SHA256
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
-
SHA512
be688838ca8686e5c90689bf2ab585cef1137c999b48c70b92f67a5c34dc15697b5d11c982ed6d71be1e1e7f7b4e0733884aa97c3f7a339a8ed03577cf74be09
Score1/10 -