Trojan.Quasar.A

By CagedTech in Trojans

Threat Scorecard

Popularity Rank:	18,337
Threat Level:	80 % (High)
Infected Computers:	20

First Seen:	August 27, 2021
Last Seen:	February 20, 2026
OS(es) Affected:	Windows

Table of Contents

Analysis Report

General information

Family Name:	Trojan.Quasar.A
Signature status:	Hash Mismatch

Known Samples

MD5: 474db2cfd12cd142ce9ea36cc1946ed3

SHA1: 5d7bc5bb7f672424fa2c838174301aa9c78868c3

SHA256: F2EDC0379420DA6E9BC4884A13B85A0C4FD8A68A7B659AF21C65572776823633

File Size: 2.68 MB, 2684872 bytes

Windows Portable Executable Attributes

File doesn't have "Rich" header
File doesn't have debug information
File doesn't have relocations information
File has exports table
File is 32-bit executable
File is either console or GUI application
File is GUI application (IMAGE_SUBSYSTEM_WINDOWS_GUI)
File is Native application (NOT .NET application)
File is not packed
IMAGE_FILE_DLL is not set inside PE header (Executable)

IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)

File Icons

Windows PE Version Information

Name	Value
Company Name	金山软件股份有限公司
File Description	JxOnline Client
File Version	3, 0, 0, 6
Internal Name	Game
Legal Copyright	版权所有 (C) 1995-2004 金山软件股份有限公司
Original Filename	Game.exe
Product Name	SwordOnline
Product Version	3.00.00.2003

Digital Signatures

Signer	Root	Status
Chengdu Xishanju Interactive Entertainment Co. Ltd	VeriSign Class 3 Code Signing 2010 CA	Hash Mismatch

File Traits

WriteProcessMemory
x86

Block Information

Total Blocks:	7,604
Potentially Malicious Blocks:	4,526
Whitelisted Blocks:	3,078
Unknown Blocks:	0

Visual Map

1 0 x 0 0 0 x x x x x x x 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 x x x x x x x x x x x 0 0 0 x x x x x x x x 0 x x x x x 0 x 0 x x x x x x x x x x x 0 x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 x x 0 0 0 x x 0 0 x x x x x x x x x x 0 x x x x x x x x x 0 x x x x x x x x x x 0 0 x x x x x x x x x x x x x 0 x x x x 0 x x x x x x x x x x x x x x x x x x x x x 0 x x x x x x x x x x x x x x x x x x x 0 x x x x x x x x x x x x x x x x x 0 x x x x 0 x 0 x x x x x x x x 0 x x x x x x x 0 x x x x x x x 0 x x x x x x x 0 0 x x 0 0 0 0 0 x 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 x 0 0 0 0 0 x x x x x x x x x x x x x x x 0 x 0 x x x x x x x x 0 0 x x x x x x 0 x 0 0 x x x x x x x x x x 0 0 x x x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x x x x x x x x x x 0 x x 0 0 x x x x x 0 x x x x 0 x 0 x 0 x 0 x 0 x x x 0 x 0 x x 0 x x 0 x x 0 x x 0 x x x 0 0 0 x x x x x 0 0 x x 0 0 x x x x x 0 0 x 0 x x 0 0 0 x x x 0 x 0 x x 0 x x x x x x x x x x x x x x x x x 0 x 0 0 0 x x x 0 0 0 0 x x x x x x x x x x x x x x x 0 x 0 x x x x 0 0 x x x x x x x x 0 0 0 0 x 0 0 0 0 0 x x x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 x x 0 0 x 0 0 x x 0 0 x x x x x x x x 0 x x x x x x x x x x x 0 x x x x x 0 x x x x x x 0 x x 0 0 x x x x x x x 0 x x x x 0 x x x x x x 0 0 x 0 0 0 x x x 0 0 0 x x x x x x x x x x x 0 x 0 0 0 x 0 x x x x x x x x x x x x x x x x 0 0 x x x x x x x x x x x x x x 0 0 x 0 x x 0 0 x x x x x x x 0 x x x x 0 0 x x x x x x 0 x x x x 0 x x x x x x 0 x 0 0 0 x x x x x x x x x 0 x x x x 0 x x x x x 0 0 x x x x x 0 0 0 0 0 0 0 0 x 0 x x x x x x x x x x 0 0 x x x x x x x x 0 x 0 0 0 x x x x x x x x 0 x x x x x x x x x 0 x x x 0 0 x x x x x 1 0 0 0 x x x 0 x x x 0 x x 0 x x x x x 0 0 0 0 0 0 x 0 x 0 x x x x x x x x x x x x x 0 0 x x x 0 0 x x 0 0 0 0 0 x x x 0 x x x 0 0 x x x 0 x x x x x x 0 x x x x 0 0 0 x x 0 x x x 0 0 x x x x x 0 0 0 0 0 x 0 0 x 0 0 0 x 0 x 0 x 0 0 0 0 x x x x 0 0 x 0 0 x 0 x 0 x x 0 0 x 0 x x x x x x x x 0 x x x 0 0 x x x 0 x x x 0 0 0 0 x x x x x 0 x 0 0 x x 0 x 0 x x x x x x x x x x 0 x x 0 x x x x x x x x x x 0 x x x x x x x 0 0 x x 0 0 x x x x x x x x x 0 0 0 x 0 0 0 0 0 x x x x x x x x x x 0 0 x 0 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x x x x x x x x 0 0 x x x x x x x x x x x x x x x x x x x 0 x x x x x x x x x x x 0 0 0 x x 0 x x x x x x x x x x x x x x x x x x x x x x x x x x 0 0 x x x x x x x x x x x 0 x x x x x x 0 x x x x x 0 0 x x 0 x 0 0 x x x x x x x x 0 0 0 0 x 0 0 0 x x x x x x x x x x x x 0 x x x x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x x x x x x 0 0 0 x x x x x x x 0 x x x x x x x x x x x x x x x x x x 0 x x 0 x x x x 0 0 0 0 x 0 x x x x x x 0 0 0 x x 0 x x x 0 x 0 x x x x x x x x x x x x 0 x x 0 0 x x x x x x x 0 x x x x x x x x x x x x x x x x x x x 0 0 x x x x x x x 0 0 0 x x x x x x x x 0 0 0 x x x x 0 x x x x x 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 x x x x x x x x x x x x x 0 0 x x x x x x 0 x x x x x x x x x x 0 0 0 x x 0 x x x x x x x x 0 x x x x x x x x x 0 x x x 0 x 0 x x x x x x x x x x x x x x x 0 x x x x 0 x x x x x 0 x x x x x 0 x x x x 0 x 0 x x 0 x x 0 x x x x x x x 0 x 0 0 0 0 x x x x x x x x x 0 x x x x x x x x x x x x x x x x 0 x x x x x x 0 x x x 0 x x x x x x 0 x 0 0 x x 0 x x x 0 x x x 0 x x x x x 0 0 x 0 x x x x x x x x x 0 0 x x 0 x x 0 0 x x x x x 0 0 x 0 0 x x x 0 x x x x x x x x x x x x 0 0 x x x x x x x x 0 0 0 x x 0 1 x 0 x x x x x x x x x x x x x x 0 0 x x x x x x x x x x x x x x x 0 x x x x x x x x 0 x x 0 x x x 0 x x x x x 0 x x x 0 x x x x x x x x x x x 0 x x x 0 x x x x x x 0 0 x x 0 0 0 x x x x x x x x x x 0 0 0 x x x x x x x x x x x x x x x 0 x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x x 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 x 0 0 0 x x 0 x x x x x x x x x 0 0 x x x x x x x x x x 0 x x x x 0 0 0 x x x x x x x x x x x x x x x x 0 0 0 x 0 x 0 x x x x 0 0 0 x 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0

... Data truncated

0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block

Similar Families

Quasar.A

EnigmaSoft’s Payment Processor Digital River GmbH Filing for Bankruptcy Does Not Impact SpyHunter Customers’ Anti-Malware Protection

Search

Change Region

Trojan.Quasar.A

Threat Scorecard

EnigmaSoft Threat Scorecard

Analysis Report

General information

Known Samples

Known Samples

Windows Portable Executable Attributes

Windows Portable Executable Attributes

File Icons

File Icons

Windows PE Version Information

Windows PE Version Information

Digital Signatures

Digital Signatures

File Traits

Block Information

Block Information

Visual Map

Similar Families

Similar Families

Submit Comment

Trending

RebateBlast

Wellhabits.xyz

STOX-C.Trojan

Most Viewed

How To Fix 'Printer Driver is Unavailable' Error

How to Fix 'macOS cannot verify that this app is...

Discord Shows Black Screen when Sharing Screen