General

  • Target

    my_penis_is_hard.lol.exe

  • Size

    903KB

  • Sample

    240607-3bwh5adh8y

  • MD5

    2ddc3374433159b00c6a9e5f43e2cd82

  • SHA1

    b712be05de623818c6ed708500dc35f225155e59

  • SHA256

    515127d9f53fa203f3ba9cb7b7b4d1cda211294cd80254cb9954e3d7462d309f

  • SHA512

    a7d9367e553476bfe9d43bb28add4f70d7e115f4575664f2d903a544c685b2c3a2d26d5279fdd873f71ccb81fcb7b6f39791216262d1326f1043ced49cd9da9c

  • SSDEEP

    12288:JTUZ/Y95eo6L4ce7dG1lFlWcYT70pxnnaaoawalBa2Ley+trZNrI0AilFEvxHvB3:JqI4MROxnF7ay6rZlI0AilFEvxHiAl

Score
10/10

Malware Config

Extracted

Family

orcus

C2

trademarks-outlook.gl.at.ply.gg:41180

Mutex

03699d28b5b94fc08b2d3a72adc46f9c

Attributes
  • autostart_method

    Disable

  • enable_keylogger

    false

  • install_path

    %programfiles%\Orcus\Orcus.exe

  • reconnect_delay

    10000

  • registry_keyname

    Orcus

  • taskscheduler_taskname

    Orcus

  • watchdog_path

    AppData\OrcusWatchdog.exe

Targets

    • Target

      my_penis_is_hard.lol.exe

    • Size

      903KB

    • MD5

      2ddc3374433159b00c6a9e5f43e2cd82

    • SHA1

      b712be05de623818c6ed708500dc35f225155e59

    • SHA256

      515127d9f53fa203f3ba9cb7b7b4d1cda211294cd80254cb9954e3d7462d309f

    • SHA512

      a7d9367e553476bfe9d43bb28add4f70d7e115f4575664f2d903a544c685b2c3a2d26d5279fdd873f71ccb81fcb7b6f39791216262d1326f1043ced49cd9da9c

    • SSDEEP

      12288:JTUZ/Y95eo6L4ce7dG1lFlWcYT70pxnnaaoawalBa2Ley+trZNrI0AilFEvxHvB3:JqI4MROxnF7ay6rZlI0AilFEvxHiAl

    Score
    6/10
    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks