General

  • Target

    ddd660614feb82769a58cbe68e629fb33795a5c7c7531c0c4f2cd5698a62850b

  • Size

    913KB

  • Sample

    240211-bc8rascg87

  • MD5

    0081b6a25451620d736c026a69f341ef

  • SHA1

    3422b382b349f7500370a6a0751d7f81431eaab6

  • SHA256

    ddd660614feb82769a58cbe68e629fb33795a5c7c7531c0c4f2cd5698a62850b

  • SHA512

    9744e843af9d860ea3c140c1b51c444f01976301de233d409f262ce93bc6f9cb94644e927488873c7567b8ffc5ceca5bfa2b7e960d81a61e45695fe941f3ef84

  • SSDEEP

    24576:m+5T4MROxnFm5bHKTlQarZlI0AilFEvxHiF9:750MiAarZlI0AilFEvxHi

Score
10/10

Malware Config

Extracted

Family

orcus

C2

127.0.0.1:10134

Mutex

79e77da6367f4fc793497f2871b7d0a9

Attributes
  • autostart_method

    Disable

  • enable_keylogger

    false

  • install_path

    %programfiles%\Orcus\Orcus.exe

  • reconnect_delay

    10000

  • registry_keyname

    Orcus

  • taskscheduler_taskname

    Orcus

  • watchdog_path

    AppData\OrcusWatchdog.exe

Targets

    • Target

      ddd660614feb82769a58cbe68e629fb33795a5c7c7531c0c4f2cd5698a62850b

    • Size

      913KB

    • MD5

      0081b6a25451620d736c026a69f341ef

    • SHA1

      3422b382b349f7500370a6a0751d7f81431eaab6

    • SHA256

      ddd660614feb82769a58cbe68e629fb33795a5c7c7531c0c4f2cd5698a62850b

    • SHA512

      9744e843af9d860ea3c140c1b51c444f01976301de233d409f262ce93bc6f9cb94644e927488873c7567b8ffc5ceca5bfa2b7e960d81a61e45695fe941f3ef84

    • SSDEEP

      24576:m+5T4MROxnFm5bHKTlQarZlI0AilFEvxHiF9:750MiAarZlI0AilFEvxHi

    Score
    6/10
    • Drops desktop.ini file(s)

MITRE ATT&CK Matrix

Tasks