TT Malware Log

マルウェア / サイバー攻撃 / 解析技術 に関する「個人」の調査・研究・参照ログ

トップ > Malware: Quasar (RAT) > VERMIN: Quasar RAT and Custom Malware Used In Ukraine

VERMIN: Quasar RAT and Custom Malware Used In Ukraine

Malware: Quasar (RAT) RAT: Vermin *インディケータ情報

【ブログ】

◆VERMIN: Quasar RAT and Custom Malware Used In Ukraine (paloalto, 2018/01/29)
[VERMIN:ウクライナで使用されているQuasar RATとカスタムマルウェア]
https://researchcenter.paloaltonetworks.com/2018/01/unit42-vermin-quasar-rat-custom-malware-used-ukraine/


【IoC情報】

◆Quasar / VERMIN (2018/07/29)
https://ioc.hatenablog.com/entry/2018/07/29/000000


【関連まとめ記事】

全体まとめ
 ◆マルウェア / Malware (まとめ)
  ◆標的型攻撃マルウェア (まとめ)

◆Quasar RAT (まとめ)
https://malware-log.hatenablog.com/entry/Quasar_RAT


【インディケータ情報】

■ハッシュ情報(Sha256) - Quasar -
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(以上は Paloalto の情報: 引用元は https://researchcenter.paloaltonetworks.com/2018/01/unit42-vermin-quasar-rat-custom-malware-used-ukraine/ )


■ハッシュ情報(Sha256) - VERMIN -
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(以上は Paloalto の情報: 引用元は https://researchcenter.paloaltonetworks.com/2018/01/unit42-vermin-quasar-rat-custom-malware-used-ukraine/ )

【検索】

google: Quasar
google:news: Quasar
google: Quasar RAT
google:news: Quasar RAT
google: VERMIN
google:news: VERMIN

google: 0157b43eb3c20928b77f8700ad8eb279a0aa348921df074cd22ebaff01edaae6
google: 154ef5037e5de49a6e3c48ea7221a02a5df33c34420a586cbff6a46dc5026a91
google: 24956d8edcf2a1fd26805ec58cfd1ee7498e1a59af8cc2f4b832a7ab34948c18
google: 250cf8b44fc3ae86b467dd3a1c261a6c3d1645a8a21addfe7f2e2241ff8b79fc
google: 46ae101a8dc8bf434d2c599aaabfb72a0843d21e2150a6c745c0c4a771c09da3
google: 488db27f3d619b3067d95515a356997ea8e840c65daa2799bdd473dce93362f2
google: 4c5e019e0e55a3fe378aa339d52c235c06ecc5053625a5d54d65c4ae38c6e3da
google: 51b0bb172c6e5eaa8e333fbf2451ae27094991b6330025374b9082ae8cd879cf
google: 5a05d2171e6aeb5edd9d39c7f46cd3bf0e2ee3ee803431a58a9945a56ce935f6
google: 6cf63ae829984a47aca93f8a1261afe5a06930f04fab6f86f6f7f9631fde59ec
google: 6f4e20e421451c3d8490067f8424d7efbcc5edeb82f80bb5562c76d4adfb0181
google: 7b08b0d4d68ebf5238eaa8a40f815b83de372e345eb22cc3d50a4bb1869db78e
google: 92295b38daa4e44b9d257e56c5b271bbbf6a620312dc58e48e56473427170aa1
google: 9a81cffe79057d8d307910143efd1455f956f2de2c7cc8fb07a7c17000913d59
google: 9ea00514c4ae9519a8938924b02826cfafeb75fc70f16c422aeadb8317a146c1
google: a3c84c5f8d981653a2a391d29f32c8127fba8f0ab7da8815330a228205c99ba6
google: aa982fe7d28bbf55865047b16334efbe3fcb6bae06e5ed9cab544f1c8d307317
google: c84afdd28fa0923a09f6dd3af1e3821cdb07862b2796fa004cd3229bc6129cbe
google: f75861216f5716b0227733e6a093776f693361626efebe37618935b9c6e1bdfd

google: 15c52b01d2b9294e2dd4d9711cde99e10f11cd188e0d1e4fa9db78f9805626c3
google: 2963c5eacaad13ace807edd634a4a5896cb5536f961f43afcf8c1f25c08a5eef
google: 31a1419d9121f55859ecf2d01f07da38bd37bb11d0ed9544a35d5d69472c358e
google: 5586fb423aff39a02cddf5e456a83a8301afe9ed78ecbc8de2cd852bc0cd498f
google: 5ee12dd028f5f8c2c0eb76f28c2ce273423998b36f3fc20c9e291f39825601f9
google: 677edb1a0a86c8bd0df150f2d9c5c3bc1d20d255b6f7944c4adcff3c45df4851
google: 74ba162eef84bf13d1d79cb26192a4692c09fed57f321230ddb7668a88e3935d
google: 98073a58101dda103ea03bbd4b3554491d227f52ec01c245c3782e63c0fdbc07
google: abd05a20b8aa21d58ee01a02ae804a0546fbf6811d71559423b6b5afdfbe7e64
google: c5647603337a4e9bfbb2259c0aec7fa9868c87ded2ab74e9d233bdb2a3bb163e
google: e1d917769267302d58a2fd00bc49d4aee5a472227a75f9366b46ce243e9cbef7
google: eb46b8978619a72f4b0d3ea8961dde527f8e27e89701ccd6e5643c33b103d901
google: eb48a31f8f81635d24f343a09247284149884bd713d3bc1c0b9c936bca8bafd7


【VT検索】

https://www.virustotal.com/gui/file/0157b43eb3c20928b77f8700ad8eb279a0aa348921df074cd22ebaff01edaae6
https://www.virustotal.com/gui/file/154ef5037e5de49a6e3c48ea7221a02a5df33c34420a586cbff6a46dc5026a91
https://www.virustotal.com/gui/file/24956d8edcf2a1fd26805ec58cfd1ee7498e1a59af8cc2f4b832a7ab34948c18
https://www.virustotal.com/gui/file/250cf8b44fc3ae86b467dd3a1c261a6c3d1645a8a21addfe7f2e2241ff8b79fc
https://www.virustotal.com/gui/file/46ae101a8dc8bf434d2c599aaabfb72a0843d21e2150a6c745c0c4a771c09da3
https://www.virustotal.com/gui/file/488db27f3d619b3067d95515a356997ea8e840c65daa2799bdd473dce93362f2
https://www.virustotal.com/gui/file/4c5e019e0e55a3fe378aa339d52c235c06ecc5053625a5d54d65c4ae38c6e3da
https://www.virustotal.com/gui/file/51b0bb172c6e5eaa8e333fbf2451ae27094991b6330025374b9082ae8cd879cf
https://www.virustotal.com/gui/file/5a05d2171e6aeb5edd9d39c7f46cd3bf0e2ee3ee803431a58a9945a56ce935f6
https://www.virustotal.com/gui/file/6cf63ae829984a47aca93f8a1261afe5a06930f04fab6f86f6f7f9631fde59ec
https://www.virustotal.com/gui/file/6f4e20e421451c3d8490067f8424d7efbcc5edeb82f80bb5562c76d4adfb0181
https://www.virustotal.com/gui/file/7b08b0d4d68ebf5238eaa8a40f815b83de372e345eb22cc3d50a4bb1869db78e
https://www.virustotal.com/gui/file/92295b38daa4e44b9d257e56c5b271bbbf6a620312dc58e48e56473427170aa1
https://www.virustotal.com/gui/file/9a81cffe79057d8d307910143efd1455f956f2de2c7cc8fb07a7c17000913d59
https://www.virustotal.com/gui/file/9ea00514c4ae9519a8938924b02826cfafeb75fc70f16c422aeadb8317a146c1
https://www.virustotal.com/gui/file/a3c84c5f8d981653a2a391d29f32c8127fba8f0ab7da8815330a228205c99ba6
https://www.virustotal.com/gui/file/aa982fe7d28bbf55865047b16334efbe3fcb6bae06e5ed9cab544f1c8d307317
https://www.virustotal.com/gui/file/c84afdd28fa0923a09f6dd3af1e3821cdb07862b2796fa004cd3229bc6129cbe
https://www.virustotal.com/gui/file/f75861216f5716b0227733e6a093776f693361626efebe37618935b9c6e1bdfd

https://www.virustotal.com/gui/file/15c52b01d2b9294e2dd4d9711cde99e10f11cd188e0d1e4fa9db78f9805626c3
https://www.virustotal.com/gui/file/2963c5eacaad13ace807edd634a4a5896cb5536f961f43afcf8c1f25c08a5eef
https://www.virustotal.com/gui/file/31a1419d9121f55859ecf2d01f07da38bd37bb11d0ed9544a35d5d69472c358e
https://www.virustotal.com/gui/file/5586fb423aff39a02cddf5e456a83a8301afe9ed78ecbc8de2cd852bc0cd498f
https://www.virustotal.com/gui/file/5ee12dd028f5f8c2c0eb76f28c2ce273423998b36f3fc20c9e291f39825601f9
https://www.virustotal.com/gui/file/677edb1a0a86c8bd0df150f2d9c5c3bc1d20d255b6f7944c4adcff3c45df4851
https://www.virustotal.com/gui/file/74ba162eef84bf13d1d79cb26192a4692c09fed57f321230ddb7668a88e3935d
https://www.virustotal.com/gui/file/98073a58101dda103ea03bbd4b3554491d227f52ec01c245c3782e63c0fdbc07
https://www.virustotal.com/gui/file/abd05a20b8aa21d58ee01a02ae804a0546fbf6811d71559423b6b5afdfbe7e64
https://www.virustotal.com/gui/file/c5647603337a4e9bfbb2259c0aec7fa9868c87ded2ab74e9d233bdb2a3bb163e
https://www.virustotal.com/gui/file/e1d917769267302d58a2fd00bc49d4aee5a472227a75f9366b46ce243e9cbef7
https://www.virustotal.com/gui/file/eb46b8978619a72f4b0d3ea8961dde527f8e27e89701ccd6e5643c33b103d901
https://www.virustotal.com/gui/file/eb48a31f8f81635d24f343a09247284149884bd713d3bc1c0b9c936bca8bafd7

Copyright (C) 谷川哲司 (Tetsuji Tanigawa) 1997 - 2023