General
-
Target
errrr.exe
-
Size
3.1MB
-
Sample
240611-1xzrkatcmh
-
MD5
b45186de4d9fb309985e996287670356
-
SHA1
f255dbf134c3bf7a1c49f7db6df4fca0b8515370
-
SHA256
600d98b3e6d396fd6658c787a1f0ea5feec9f0abfaa58291dd286fbb28ed68ee
-
SHA512
471b48014b94b309eeeed946970056e978b2e8d9e087722141f2e10365555295927491ddf90b6c987e82f587d5de435749a2dc170941c8f838340021e9463f82
-
SSDEEP
98304:nvJL26AaNeWgPhlmVqkQ7XSKqV/RJ6Y7h:vH4Sr97h
Behavioral task
behavioral1
Sample
errrr.exe
Resource
win7-20240419-en
Malware Config
Extracted
quasar
1.4.1
Office04
Fortniote-63705.portmap.host:63705
7275eed2-cfc2-4aaa-85a9-989867afc89d
-
encryption_key
1F7D88978B03E5C08F9DEDBD0A0F2EF673BE9527
-
install_name
Client.exe
-
log_directory
Logs
-
reconnect_delay
3000
-
startup_key
Quasar Client Startup
-
subdirectory
SubDir
Targets
-
-
Target
errrr.exe
-
Size
3.1MB
-
MD5
b45186de4d9fb309985e996287670356
-
SHA1
f255dbf134c3bf7a1c49f7db6df4fca0b8515370
-
SHA256
600d98b3e6d396fd6658c787a1f0ea5feec9f0abfaa58291dd286fbb28ed68ee
-
SHA512
471b48014b94b309eeeed946970056e978b2e8d9e087722141f2e10365555295927491ddf90b6c987e82f587d5de435749a2dc170941c8f838340021e9463f82
-
SSDEEP
98304:nvJL26AaNeWgPhlmVqkQ7XSKqV/RJ6Y7h:vH4Sr97h
-
Quasar payload
-