Pulse Detail — Threat Intelligence

PULSE NAME

ACTIVIDAD MALICIOSA | Relacionada con QuasarRAT 02-08-2023

WHITE esoporteingenieria2020 2023-08-02 Modified: 2023-08-02

IOCs

HIGH VOLUME

Quasar RAT es una familia de malware escrita en .NET que es utilizada por una variedad de atacantes. El malware es completamente funcional y de código abierto, y a menudo está empaquetado para dificultar el análisis de la fuente.

MITRE ATT&CK & Malware Families

ATT&CK TECHNIQUES

T1021 T1053 T1056 T1059 T1082 T1090 T1105 T1112 T1125 T1552 T1553 T1555 T1573 T1587

MALWARE FAMILIES

QuasarRAT - S0262

Indicators of Compromise (81)

All FileHash-MD5 FileHash-SHA1 FileHash-SHA256

TYPE	INDICATOR	DESCRIPTION	CREATED
FileHash-MD5	2274734967ed6e0b85c187f26de88b16	MD5 of ffd1f5eebdecbc29317a92b2c87b75ab94d2003eaf6ecfb4872d8c70d8460d09	2023-08-02
FileHash-MD5	47914f0ceb488a63c63c68c5b2cf9703	MD5 of 038c37cbf6050e8371b9e4ea76498b6297ef4645262fbf14cb25198f0f42b51e	2023-08-02
FileHash-MD5	7416ede6924c85117720a8a9d158c67f	MD5 of 2b2c926a0d587f409f3c7453d3d9018642cdc51abce1752eb2bf395728619576	2023-08-02
FileHash-MD5	866aeb690762190e7f633f2756caf855	MD5 of 29a2665bf184e5e522774aa9c1b49c9a9e6d91d81e48e24c27f5ff50c206303d	2023-08-02
FileHash-SHA1	238dd66f85677e8f945773a93dd1ffdce0e4f50e	SHA1 of 2b2c926a0d587f409f3c7453d3d9018642cdc51abce1752eb2bf395728619576	2023-08-02
FileHash-SHA1	3735a542952b294d6b4d6bacffd21db154aa468d	SHA1 of 038c37cbf6050e8371b9e4ea76498b6297ef4645262fbf14cb25198f0f42b51e	2023-08-02
FileHash-SHA1	503de210548f1378fcf211f5ad3c8b64b19b7378	SHA1 of 29a2665bf184e5e522774aa9c1b49c9a9e6d91d81e48e24c27f5ff50c206303d	2023-08-02
FileHash-SHA1	57fbd7a251aa98b7da358d690879b878ebfa9a0f	SHA1 of ffd1f5eebdecbc29317a92b2c87b75ab94d2003eaf6ecfb4872d8c70d8460d09	2023-08-02
FileHash-SHA256	038c37cbf6050e8371b9e4ea76498b6297ef4645262fbf14cb25198f0f42b51e	—	2023-08-02
FileHash-SHA256	29a2665bf184e5e522774aa9c1b49c9a9e6d91d81e48e24c27f5ff50c206303d	—	2023-08-02
FileHash-SHA256	2b2c926a0d587f409f3c7453d3d9018642cdc51abce1752eb2bf395728619576	—	2023-08-02
FileHash-SHA256	ffd1f5eebdecbc29317a92b2c87b75ab94d2003eaf6ecfb4872d8c70d8460d09	—	2023-08-02
FileHash-MD5	3f112ffaca9bfc732e7f5106e71d8672	MD5 of 30751d81b19535e4799cbb0377834b19ae28eb2d6937258b9d2aa4c37e42d48b	2023-08-02
FileHash-SHA1	635e332b23231a26ee0cd5c8789b34b2d1c2c39c	SHA1 of 30751d81b19535e4799cbb0377834b19ae28eb2d6937258b9d2aa4c37e42d48b	2023-08-02
FileHash-SHA256	30751d81b19535e4799cbb0377834b19ae28eb2d6937258b9d2aa4c37e42d48b	—	2023-08-02
FileHash-MD5	1de4d7d25d4c63da5bf5a990d7d40e7d	MD5 of 3561b1eab2b650f0a714dc2da14bb751e03008a444dcc7dc1293eca7056727a2	2023-08-02
FileHash-MD5	35978426c438be50ff71a09d303054e3	MD5 of 866b5bcc067af55b26fae2013af4310fb27381a585e720a1dd39c722f1a18c19	2023-08-02
FileHash-MD5	3b20a80251740bb4443968cdd125b99d	MD5 of 4d45801772b476bb53a0fed32db423b19b97310d6c5ec2779b108cdcdf1ced6a	2023-08-02
FileHash-MD5	4f6212f670b6bc2372a97d6ecb2bfbeb	MD5 of beeb985707b6f8539ad51664530bfb507ca9f65d9c1e6e716ca95f5d7e13291b	2023-08-02
FileHash-MD5	5bcd4cf46723970eda2d960fe80ae23a	MD5 of aa3462b05c8fe0d8521bc192715449e61780d523f097b5306e1d007daf93872c	2023-08-02
FileHash-MD5	6e9a5eb6cf78a859c57f941b97e1fa15	MD5 of ed4cbfe246783bd7a7d124ac8f67e208f968a805264c3c6883fe77ac8fc4e72c	2023-08-02
FileHash-MD5	77639684385a890f7ee4e9d533547342	MD5 of d7b743b3582875c7901a0af05f9428e89d50aecb319425f7a800c80924f81a50	2023-08-02
FileHash-MD5	8bf941fe11f5fd2ed9ee4af6f7fdeab5	MD5 of 7f917c73bf60293d433f8cfa6ca652360277c981fc6c9368b218b38e4a9594c7	2023-08-02
FileHash-MD5	9cee9fa15e4c70e527b95a1c6d341bfd	MD5 of 51fd7ec86eb447de524db155117eb5a0422bbec61aabf2a887f0ba2d6f8065d1	2023-08-02
FileHash-MD5	a68c52bcf23ee991ccc930e391435f48	MD5 of 3cea309d8b6b448883aafcf5f31119d212b71f4757e9b57c8315f1e5573e6fab	2023-08-02
FileHash-MD5	ab05b6b799e6bca232fdb7005c085e05	MD5 of 6c16c890ebece47d2e9c9160c366e632fc7577ac766ae32ef640070481ab8c3e	2023-08-02
FileHash-MD5	adcfb6fc48fe920f153d6ba5e279790f	MD5 of 2259304db67dd25fa5ce47bde5b1c8cffab23292c2cec7d3bc2a0c303aace85b	2023-08-02
FileHash-MD5	bdb1988fea2a37b86db9d928acfa7506	MD5 of fe8a773ed9bdcbfa839b049f956083e295d93efa6d48e2fa96bbd45af68dab9d	2023-08-02
FileHash-MD5	c58cc6410dfc930c70caded805f88e2d	MD5 of 295a185629cf9edf7bcdddd8cf1a68c95bb82f4debfad3f5540075feada42d85	2023-08-02
FileHash-MD5	d033f99723109ae7a00f9861bfea7e8b	MD5 of dcbbadb9460751f4a7684af8b8bb8c78f3327b066445100d277af5c01f184f4e	2023-08-02
FileHash-MD5	d0c51c2447ac3268679d6ca5605404ad	MD5 of c0008144ddbf580b5aa762cdc847c84ea6222f9b47543c17ddb90d86cd7fd0ca	2023-08-02
FileHash-MD5	dae2c52b1ecd13a7bb98aa3651167a7c	MD5 of 36332d397a9c6303da243d4e155d5277dd148e5226389bd07543bc73b126c89b	2023-08-02
FileHash-MD5	eb7c04d87fa24d5c0689574115a95e95	MD5 of babe83482f8e7f0183669ae5b87f3341f6ffb7a769ef597825d60e4e45775935	2023-08-02
FileHash-SHA1	0367375fad04729c9f53b18436e08ff1fe76c153	SHA1 of 295a185629cf9edf7bcdddd8cf1a68c95bb82f4debfad3f5540075feada42d85	2023-08-02
FileHash-SHA1	0ad8a4b0777fb91f8169c75345122755b72223cc	SHA1 of 2259304db67dd25fa5ce47bde5b1c8cffab23292c2cec7d3bc2a0c303aace85b	2023-08-02
FileHash-SHA1	22cb70d140c739951a02c84cbf1dbcf34eee72a0	SHA1 of babe83482f8e7f0183669ae5b87f3341f6ffb7a769ef597825d60e4e45775935	2023-08-02
FileHash-SHA1	2c86a15a80f13f38fa4c0e609c4ab22f4d41769b	SHA1 of 7f917c73bf60293d433f8cfa6ca652360277c981fc6c9368b218b38e4a9594c7	2023-08-02
FileHash-SHA1	44d920bb28588fbdfb42614807602d4cbe43093c	SHA1 of d7b743b3582875c7901a0af05f9428e89d50aecb319425f7a800c80924f81a50	2023-08-02
FileHash-SHA1	4cdc76a9561a32c6c6656897fd87aa5fc194c128	SHA1 of 36332d397a9c6303da243d4e155d5277dd148e5226389bd07543bc73b126c89b	2023-08-02
FileHash-SHA1	5664622a63b1d78c7947cdf191126f032cd4b0cf	SHA1 of 3cea309d8b6b448883aafcf5f31119d212b71f4757e9b57c8315f1e5573e6fab	2023-08-02
FileHash-SHA1	64550e253cc39a63c9547b7d2173b429e605da66	SHA1 of 51fd7ec86eb447de524db155117eb5a0422bbec61aabf2a887f0ba2d6f8065d1	2023-08-02
FileHash-SHA1	737cb1a380f0019af3f81b62507c6b4400ab3a69	SHA1 of fe8a773ed9bdcbfa839b049f956083e295d93efa6d48e2fa96bbd45af68dab9d	2023-08-02
FileHash-SHA1	789b0d58500c5ca8d53df74edfadcf42f2e0c814	SHA1 of beeb985707b6f8539ad51664530bfb507ca9f65d9c1e6e716ca95f5d7e13291b	2023-08-02
FileHash-SHA1	81620db2356502fe77050a95d247dfcddf9125c4	SHA1 of 6c16c890ebece47d2e9c9160c366e632fc7577ac766ae32ef640070481ab8c3e	2023-08-02
FileHash-SHA1	8c7fa34eb9536c54bdb49939881a5010cd33eb9b	SHA1 of ed4cbfe246783bd7a7d124ac8f67e208f968a805264c3c6883fe77ac8fc4e72c	2023-08-02
FileHash-SHA1	99a8f137febd7a34cdcd6f3f867a02666cdb35be	SHA1 of 866b5bcc067af55b26fae2013af4310fb27381a585e720a1dd39c722f1a18c19	2023-08-02
FileHash-SHA1	b6dbb1d6654ec62fa1925f8ca3ea9b73bfbe5746	SHA1 of dcbbadb9460751f4a7684af8b8bb8c78f3327b066445100d277af5c01f184f4e	2023-08-02
FileHash-SHA1	bd5d9bc7b8088dcbcc2cd8cdca156ce7d3cc7902	SHA1 of 3561b1eab2b650f0a714dc2da14bb751e03008a444dcc7dc1293eca7056727a2	2023-08-02
FileHash-SHA1	c1bf165a82ec1d94e6773dc27b2432967baa7814	SHA1 of c0008144ddbf580b5aa762cdc847c84ea6222f9b47543c17ddb90d86cd7fd0ca	2023-08-02
FileHash-SHA1	c75bd1e6775d4adb199d1ec73d959ec9bd472e21	SHA1 of aa3462b05c8fe0d8521bc192715449e61780d523f097b5306e1d007daf93872c	2023-08-02
FileHash-SHA1	d71799b31894752d08b8a0ce5af639ea2cb6abb9	SHA1 of 4d45801772b476bb53a0fed32db423b19b97310d6c5ec2779b108cdcdf1ced6a	2023-08-02
FileHash-SHA256	1ead164add4a39d1dea816fef36c153347edd9516554db804fd847ebdaad8688	—	2023-08-02
FileHash-SHA256	20633717b608c0d4b45f5d3f3bb670d0de9bec4ec346175deaded094acf0eba9	—	2023-08-02
FileHash-SHA256	2259304db67dd25fa5ce47bde5b1c8cffab23292c2cec7d3bc2a0c303aace85b	—	2023-08-02
FileHash-SHA256	295a185629cf9edf7bcdddd8cf1a68c95bb82f4debfad3f5540075feada42d85	—	2023-08-02
FileHash-SHA256	3561b1eab2b650f0a714dc2da14bb751e03008a444dcc7dc1293eca7056727a2	—	2023-08-02
FileHash-SHA256	36332d397a9c6303da243d4e155d5277dd148e5226389bd07543bc73b126c89b	—	2023-08-02
FileHash-SHA256	3ad28762f94e924486bfcfff47531133cf31633181a1f326157dd607faf01c0c	—	2023-08-02
FileHash-SHA256	3cea309d8b6b448883aafcf5f31119d212b71f4757e9b57c8315f1e5573e6fab	—	2023-08-02
FileHash-SHA256	4c91c1999a25d525a41e688d4f86dee6d583f51210b58ca20d1a2ac312d8b93f	—	2023-08-02
FileHash-SHA256	4d45801772b476bb53a0fed32db423b19b97310d6c5ec2779b108cdcdf1ced6a	—	2023-08-02
FileHash-SHA256	51fd7ec86eb447de524db155117eb5a0422bbec61aabf2a887f0ba2d6f8065d1	—	2023-08-02
FileHash-SHA256	58137e4f29eebade3dd0646bd47100a2a07bb6f53fbce88f4f4f9e2d348e8811	—	2023-08-02
FileHash-SHA256	6c16c890ebece47d2e9c9160c366e632fc7577ac766ae32ef640070481ab8c3e	—	2023-08-02
FileHash-SHA256	75314603ad6007bb6f475f35e4b45871bdefb815f0f8128c3fe279a10bd19e3f	—	2023-08-02
FileHash-SHA256	7f917c73bf60293d433f8cfa6ca652360277c981fc6c9368b218b38e4a9594c7	—	2023-08-02
FileHash-SHA256	84040763e60ebf458921ff16f1e35cdfd98b1659c3b93470e2aca4a0dd2a494b	—	2023-08-02
FileHash-SHA256	866b5bcc067af55b26fae2013af4310fb27381a585e720a1dd39c722f1a18c19	—	2023-08-02
FileHash-SHA256	aa18400f1aa2fef6c2a5a50965981a3d668e052ce8ac851a8bd145cac1ee2ace	—	2023-08-02
FileHash-SHA256	aa3462b05c8fe0d8521bc192715449e61780d523f097b5306e1d007daf93872c	—	2023-08-02
FileHash-SHA256	babe83482f8e7f0183669ae5b87f3341f6ffb7a769ef597825d60e4e45775935	—	2023-08-02
FileHash-SHA256	beeb985707b6f8539ad51664530bfb507ca9f65d9c1e6e716ca95f5d7e13291b	—	2023-08-02
FileHash-SHA256	c0008144ddbf580b5aa762cdc847c84ea6222f9b47543c17ddb90d86cd7fd0ca	—	2023-08-02
FileHash-SHA256	c0e63dffeadeefd38d63f38be833bf89dcc0b7806035dfc8791c8ab21dc2570f	—	2023-08-02
FileHash-SHA256	c1d67650c1478f217e31fc7d54d9196bf6384d6e6edcafcc85f600a858ea2252	—	2023-08-02
FileHash-SHA256	d7b743b3582875c7901a0af05f9428e89d50aecb319425f7a800c80924f81a50	—	2023-08-02
FileHash-SHA256	dcbbadb9460751f4a7684af8b8bb8c78f3327b066445100d277af5c01f184f4e	—	2023-08-02
FileHash-SHA256	ec5f46d31e3640082deea41ecd1ec3977376737db0a044e9ffb9f3fece8dcb82	—	2023-08-02
FileHash-SHA256	ed4cbfe246783bd7a7d124ac8f67e208f968a805264c3c6883fe77ac8fc4e72c	—	2023-08-02
FileHash-SHA256	fb57d4295e76a22d42f900ab381c9473998244b2517275fe66dfa7661dae6cd9	—	2023-08-02
FileHash-SHA256	fe8a773ed9bdcbfa839b049f956083e295d93efa6d48e2fa96bbd45af68dab9d	—	2023-08-02

References (2)

↗ https://bazaar.abuse.ch/browse.php?search=signature%3AQuasarRAT ↗ https://alertas-y-seguridad.jimdosite.com/