quasar | hxxps://github[.]com/Serpentiner4/DiscordNuker/blob/main/DCNuker[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

1

URLScan

urlscan

https://github.com/S...

windows10-2004-x64

Sharing

General

Target

https://github.com/Serpentiner4/DiscordNuker/blob/main/DCNuker.exe
Sample

250419-21ljsaypv6

Score

10^/10

quasar dcnuker discovery spyware trojan

Static task

static1

URLScan task

urlscan1

Behavioral task

behavioral1

Sample

https://github.com/Serpentiner4/DiscordNuker/blob/main/DCNuker.exe

Resource

win10v2004-20250314-en

quasar dcnuker discovery spyware trojan

windows10-2004-x64

21 signatures

300 seconds

Malware Config

Extracted

Family

quasar

Version

1.4.1

Botnet

DCNuker

C2

172.20.240.1:4782

Mutex

5aef42ba-730f-4fd5-8e38-3b80e5c03c35

Attributes

encryption_key
AEF3998DA89E9CAD4DD20B71C925A29DFDCDA383
install_name
SecLoaderDecryptor.exe
log_directory
CrashDumps
reconnect_delay
3000
startup_key
Update Checker
subdirectory
SubDir

Targets

- Target
  
  https://github.com/Serpentiner4/DiscordNuker/blob/main/DCNuker.exe
Score

10^/10

quasar dcnuker discovery spyware trojan
- Quasar RAT
  Quasar is an open source Remote Access Tool.
  trojan spyware quasar
- Quasar family
  quasar
- Quasar payload
- Downloads MZ/PE file
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

urlscan1

behavioral1

quasardcnukerdiscoveryspywaretrojan

© 2018-2025

Terms | Privacy