quasar | hxxp://google[.]com | Triage

Submit
Reports

Overview

overview

Static

static

1

URLScan

urlscan

1

http://google.com

windows7-x64

Sharing

General

Target

http://google.com
Sample

241223-yzat4szma1

Score

10^/10

quasar rat discovery spyware trojan

Static task

static1

URLScan task

urlscan1

Behavioral task

behavioral1

Sample

http://google.com

Resource

win7-20241023-en

quasar rat discovery spyware trojan

windows7-x64

20 signatures

600 seconds

Malware Config

Extracted

Family

quasar

Version

1.4.1

Botnet

Rat

C2

192.168.3.157:4782

Mutex

b612c80b-cb8f-4d42-a3a3-d1394ec672bd

Attributes

encryption_key
59A9623CCCF5082BE240F699C7E140A2913C8A0A
install_name
imarat.exe
log_directory
Logs
reconnect_delay
3000
startup_key
Winsysupdator
subdirectory
IMARAT

Targets

- Target
  
  http://google.com
Score

10^/10

quasar rat discovery spyware trojan
- Quasar RAT
  Quasar is an open source Remote Access Tool.
  trojan spyware quasar
- Quasar family
  quasar
- Quasar payload
- Downloads MZ/PE file
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

urlscan1

behavioral1

quasarratdiscoveryspywaretrojan

© 2018-2025

Terms | Privacy