quasar | 6cfb5f6edf3e71772ecc51e4c140ca8affca2a8b1e14f9ea2a29d5d8b8b804d4 | Triage

Submit
Reports

Overview

overview

Static

static

ixeeno.exe

windows11-21h2-x64

Sharing

General

Target

ixeeno.exe
Size

1.5MB
Sample

250327-b2yydsv1gx
MD5

5c21bfbaee6da7b7d31e71ec5c8e9544
SHA1

786a726fee0d5650c89bada327b7cb8189317d59
SHA256

6cfb5f6edf3e71772ecc51e4c140ca8affca2a8b1e14f9ea2a29d5d8b8b804d4
SHA512

ee97eda01da8d6515d0583ba1d31abd3de1f992ddbe30dd9ec8a1c55e8033d02d4599ec56388d1f90032231c81cf5122228faea72d80fab249abe1f998967377
SSDEEP

24576:9lRNJAhU6S2HIPbcNE0KKzaOwIRxl2SVcE3bgKFLyrvPvjMP:/DKEwKKzwipVcab9Lyr

Score

10^/10

quasar spyware trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

ixeeno.exe

Resource

win11-20250313-en

quasar spyware trojan

windows11-21h2-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  ixeeno.exe
- Size
  
  1.5MB
- MD5
  
  5c21bfbaee6da7b7d31e71ec5c8e9544
- SHA1
  
  786a726fee0d5650c89bada327b7cb8189317d59
- SHA256
  
  6cfb5f6edf3e71772ecc51e4c140ca8affca2a8b1e14f9ea2a29d5d8b8b804d4
- SHA512
  
  ee97eda01da8d6515d0583ba1d31abd3de1f992ddbe30dd9ec8a1c55e8033d02d4599ec56388d1f90032231c81cf5122228faea72d80fab249abe1f998967377
- SSDEEP
  
  24576:9lRNJAhU6S2HIPbcNE0KKzaOwIRxl2SVcE3bgKFLyrvPvjMP:/DKEwKKzwipVcab9Lyr
Score

10^/10

quasar spyware trojan
- Quasar RAT
  Quasar is an open source Remote Access Tool.
  trojan spyware quasar
- Quasar family
  quasar
- Quasar payload
- Executes dropped EXE
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

quasarspywaretrojan

© 2018-2025

Terms | Privacy