quasar | 0be5a8e4d80353ec3e852df8da35a05138978ea6fb7b8cb10f244f709e170be0 | Triage

Submit
Reports

Overview

overview

Static

static

3

pt3FUor71KhFxRI.exe

windows11-21h2-x64

Sharing

General

Target

pt3FUor71KhFxRI.exe
Size

1.6MB
Sample

250328-e86tcstn12
MD5

07cabbbc11af08a2c4540c0fa2cff498
SHA1

78694904ffd774102ed8a7956971009aeb014356
SHA256

0be5a8e4d80353ec3e852df8da35a05138978ea6fb7b8cb10f244f709e170be0
SHA512

cc0df894db716b74f7d33e375cb66c0fbafb31f4bcc4cef937aea0038681acfb086f8c9660d9603d6ce5506bb615f01ddfb869cbc3ac5c1f444b042cc6c513d9
SSDEEP

49152:rq4H/Y6gY9W3M4xtJXYDjf9Gjyl4h2iKw:24HwAW3JxDUQ+l4giKw

Score

10^/10

quasar discovery spyware trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

pt3FUor71KhFxRI.exe

Resource

win11-20250313-en

quasar discovery spyware trojan

windows11-21h2-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  pt3FUor71KhFxRI.exe
- Size
  
  1.6MB
- MD5
  
  07cabbbc11af08a2c4540c0fa2cff498
- SHA1
  
  78694904ffd774102ed8a7956971009aeb014356
- SHA256
  
  0be5a8e4d80353ec3e852df8da35a05138978ea6fb7b8cb10f244f709e170be0
- SHA512
  
  cc0df894db716b74f7d33e375cb66c0fbafb31f4bcc4cef937aea0038681acfb086f8c9660d9603d6ce5506bb615f01ddfb869cbc3ac5c1f444b042cc6c513d9
- SSDEEP
  
  49152:rq4H/Y6gY9W3M4xtJXYDjf9Gjyl4h2iKw:24HwAW3JxDUQ+l4giKw
Score

10^/10

quasar discovery spyware trojan
- Quasar RAT
  Quasar is an open source Remote Access Tool.
  trojan spyware quasar
- Quasar family
  quasar
- Quasar payload
- Executes dropped EXE
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

quasardiscoveryspywaretrojan

© 2018-2025

Terms | Privacy