Skip to main content

Posts

Featured

Latest variant of QuasarRAT Malware sample and binary analysis:

Malware researcher, @JayTHL, spotted the recent variant QuasarRAT malware and shared the details in his latest tweet.
https://twitter.com/JayTHL/status/1188498558653206528



VirusTotal details about the malicious link (downloadable):
https://www.virustotal.com/gui/url/97d944bd2b651d772469bb3142d2a743cff089c4c9b90506dd7836be6bb5ddc6/detection

With the help of VT submission of the malicious URL where the malware is hosted, VT takes us to the detection of downloaded malicious binary.
https://www.virustotal.com/gui/file/7eddd7ae2a9c7635cc8ddb303d264e6e28c77109f7e075a4dbb7c7f123a3db51/detection





Full analysis available here: https://www.hybrid-analysis.com/sample/7eddd7ae2a9c7635cc8ddb303d264e6e28c77109f7e075a4dbb7c7f123a3db51/5db5cabc038838d85deae1a5


Indicator of compromise details

URL
hxxp://cdn(.)discordapp(.)com/attachments/539479686233849867/539525152690536458/aimware_by_unoment.exe

Hash values
SHA256: 7eddd7ae2a9c7635cc8ddb303d264e6e28c77109f7e075a4dbb7c7f123a3db51
MD5: 18cbade6358ba14369fd4…

Latest Posts

Posters on Quantum Physics and Particle Physics:

Atom:

How would I make sense Higgs Boson to a seven year old?

Plasma Physics

Four fundamental forces:

Large Hadron Collider - greatest experimental physics arena: