quasar | 51a46ec8ab5c2ce8120574862856431ae0fe43835614d7451254349c8449dbd2 | Triage

Submit
Reports

Overview

overview

Static

static

test.exe

windows10-2004-x64

Sharing

General

Target

test.exe
Size

3.1MB
Sample

250202-rach3svjfz
MD5

1b686abfb9749a3afc474b35358777a7
SHA1

9ef8295007e94c46a51a834fc28d5149be6e172c
SHA256

51a46ec8ab5c2ce8120574862856431ae0fe43835614d7451254349c8449dbd2
SHA512

e487f734eed472aae2c850b89a6eafa4d03b1617ef5a19775feeff2710d5a7776babae7b723b8e64af1ee799db4d080b3f1044fd5f395f5303a2783545e506ad
SSDEEP

98304:jve92YpaQI6oPZlhP3YybewoYaM9oQ6D:LO/w7ayoQ6D

Score

10^/10

quasar amogus spyware trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

test.exe

Resource

win10v2004-20250129-en

quasar amogus spyware trojan

windows10-2004-x64

17 signatures

150 seconds

Malware Config

Extracted

Family

quasar

Version

1.4.1

Botnet

amogus

C2

192.168.1.8:8800

fdb4:f58e:ba38:2e00:d8b8:db52:2626:c864:8800

Mutex

7f37811d-9003-43b9-bdc7-ed884a935046

Attributes

encryption_key
39AED3F0C038C369268A1B952FEC319172EFD62C
install_name
SystemUpdateServices.exe
log_directory
Logs
reconnect_delay
2000
startup_key
SystemUpdateServices
subdirectory
SystemDataForUpdate

Targets

- Target
  
  test.exe
- Size
  
  3.1MB
- MD5
  
  1b686abfb9749a3afc474b35358777a7
- SHA1
  
  9ef8295007e94c46a51a834fc28d5149be6e172c
- SHA256
  
  51a46ec8ab5c2ce8120574862856431ae0fe43835614d7451254349c8449dbd2
- SHA512
  
  e487f734eed472aae2c850b89a6eafa4d03b1617ef5a19775feeff2710d5a7776babae7b723b8e64af1ee799db4d080b3f1044fd5f395f5303a2783545e506ad
- SSDEEP
  
  98304:jve92YpaQI6oPZlhP3YybewoYaM9oQ6D:LO/w7ayoQ6D
Score

10^/10

quasar amogus spyware trojan
- Quasar RAT
  Quasar is an open source Remote Access Tool.
  trojan spyware quasar
- Quasar family
  quasar
- Quasar payload
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

quasaramogusspywaretrojan

© 2018-2025

Terms | Privacy