General

  • Target

    rat.exe

  • Size

    1.8MB

  • MD5

    8ad0919a0ee7cba7298d009d4b58e3ff

  • SHA1

    f75c3c9f06aa11b72db556d259b40a11d685ac11

  • SHA256

    798159895032344c910b1d937ebda40fafeb2c657e3039c49c0999d77a73f75f

  • SHA512

    23d50fc6006cb610a35cacdf29fee5a074993eb3b3e3f3746d78e9c621fb41c7ac0dda24fd4be4412b3a9915fd93cd1f46fa6f7a476bf53a8cee370939a2a064

  • SSDEEP

    49152:kJuHrhm4SEHZF6qXyoU7Ej44FoGl3RRZr7NoazWVgUIRFSO1SSQ:CMrh3JHZF6VoUoj4+7fNo

Score
10/10

Malware Config

Signatures

  • Orcurs Rat Executable 1 IoCs
  • Orcus family
  • Orcus main payload 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • rat.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections