quasar | 5057c9d2aef506507ce6446a1880bf4412d66509dfc8ddf2a10aaaf3d24b71c8 | Triage

Submit
Reports

Overview

overview

Static

static

Client-built.exe

windows11-21h2-x64

Sharing

General

Target

Client-built.exe
Size

1.6MB
Sample

250328-eqg3aatmw4
MD5

fb20750c6897828894a8898ec4981247
SHA1

6c69199fea80c61a33c661424c5b32f5616f98a8
SHA256

5057c9d2aef506507ce6446a1880bf4412d66509dfc8ddf2a10aaaf3d24b71c8
SHA512

9167a40048dd341a4c1f78849ab974f1ffd4bd95e840fcb9dd30d5d0bd1d92384c2cd5a213cc845f579d2273b9ecd78f06ba78a7ba8b6920b583061fad0b5cf5
SSDEEP

24576:HJodbAroAS2HIPbcNE0KKzaOwIRxl2Sk43mw5CLZzc4tMx1:pOyEwKKzwipTIZc4U

Score

10^/10

quasar spyware trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

Client-built.exe

Resource

win11-20250313-en

quasar spyware trojan

windows11-21h2-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  Client-built.exe
- Size
  
  1.6MB
- MD5
  
  fb20750c6897828894a8898ec4981247
- SHA1
  
  6c69199fea80c61a33c661424c5b32f5616f98a8
- SHA256
  
  5057c9d2aef506507ce6446a1880bf4412d66509dfc8ddf2a10aaaf3d24b71c8
- SHA512
  
  9167a40048dd341a4c1f78849ab974f1ffd4bd95e840fcb9dd30d5d0bd1d92384c2cd5a213cc845f579d2273b9ecd78f06ba78a7ba8b6920b583061fad0b5cf5
- SSDEEP
  
  24576:HJodbAroAS2HIPbcNE0KKzaOwIRxl2Sk43mw5CLZzc4tMx1:pOyEwKKzwipTIZc4U
Score

10^/10

quasar spyware trojan
- Quasar RAT
  Quasar is an open source Remote Access Tool.
  trojan spyware quasar
- Quasar family
  quasar
- Quasar payload
- Executes dropped EXE
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

quasarspywaretrojan

© 2018-2025

Terms | Privacy