General
-
Target
ddd660614feb82769a58cbe68e629fb33795a5c7c7531c0c4f2cd5698a62850b
-
Size
913KB
-
Sample
240211-bc8rascg87
-
MD5
0081b6a25451620d736c026a69f341ef
-
SHA1
3422b382b349f7500370a6a0751d7f81431eaab6
-
SHA256
ddd660614feb82769a58cbe68e629fb33795a5c7c7531c0c4f2cd5698a62850b
-
SHA512
9744e843af9d860ea3c140c1b51c444f01976301de233d409f262ce93bc6f9cb94644e927488873c7567b8ffc5ceca5bfa2b7e960d81a61e45695fe941f3ef84
-
SSDEEP
24576:m+5T4MROxnFm5bHKTlQarZlI0AilFEvxHiF9:750MiAarZlI0AilFEvxHi
Behavioral task
behavioral1
Sample
ddd660614feb82769a58cbe68e629fb33795a5c7c7531c0c4f2cd5698a62850b.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
ddd660614feb82769a58cbe68e629fb33795a5c7c7531c0c4f2cd5698a62850b.exe
Resource
win10v2004-20231215-en
Malware Config
Extracted
orcus
127.0.0.1:10134
79e77da6367f4fc793497f2871b7d0a9
-
autostart_method
Disable
-
enable_keylogger
false
-
install_path
%programfiles%\Orcus\Orcus.exe
-
reconnect_delay
10000
-
registry_keyname
Orcus
-
taskscheduler_taskname
Orcus
-
watchdog_path
AppData\OrcusWatchdog.exe
Targets
-
-
Target
ddd660614feb82769a58cbe68e629fb33795a5c7c7531c0c4f2cd5698a62850b
-
Size
913KB
-
MD5
0081b6a25451620d736c026a69f341ef
-
SHA1
3422b382b349f7500370a6a0751d7f81431eaab6
-
SHA256
ddd660614feb82769a58cbe68e629fb33795a5c7c7531c0c4f2cd5698a62850b
-
SHA512
9744e843af9d860ea3c140c1b51c444f01976301de233d409f262ce93bc6f9cb94644e927488873c7567b8ffc5ceca5bfa2b7e960d81a61e45695fe941f3ef84
-
SSDEEP
24576:m+5T4MROxnFm5bHKTlQarZlI0AilFEvxHiF9:750MiAarZlI0AilFEvxHi
Score6/10-
Drops desktop.ini file(s)
-