General

  • Target

    b38184c72faea9e45a8377cc57de236c_JaffaCakes118

  • Size

    2.2MB

  • Sample

    240616-pm9cgatbje

  • MD5

    b38184c72faea9e45a8377cc57de236c

  • SHA1

    c56d9ce90882e9d9b336b12759a2227cc3bc051d

  • SHA256

    d9cb440d375adaf9ce1aa57a860ec80d0ce79149a2f691e666743f70c8d12720

  • SHA512

    74c6d56a3e439659e0458d1509e15309cbfce0716341a893120e0c7dce14e62b01543e9877f9f455a347f3e16d8fbd310c24430654451a5dc8c17098a08299af

  • SSDEEP

    49152:+GOMiATSurrcI0AilFEvxHP0vmMiwTSFrrcI0AilFEvxHPlAR:1OXm

Malware Config

Targets

    • Target

      b38184c72faea9e45a8377cc57de236c_JaffaCakes118

    • Size

      2.2MB

    • MD5

      b38184c72faea9e45a8377cc57de236c

    • SHA1

      c56d9ce90882e9d9b336b12759a2227cc3bc051d

    • SHA256

      d9cb440d375adaf9ce1aa57a860ec80d0ce79149a2f691e666743f70c8d12720

    • SHA512

      74c6d56a3e439659e0458d1509e15309cbfce0716341a893120e0c7dce14e62b01543e9877f9f455a347f3e16d8fbd310c24430654451a5dc8c17098a08299af

    • SSDEEP

      49152:+GOMiATSurrcI0AilFEvxHP0vmMiwTSFrrcI0AilFEvxHPlAR:1OXm

    • Orcus

      Orcus is a Remote Access Trojan that is being sold on underground forums.

    • Orcurs Rat Executable

MITRE ATT&CK Matrix

Tasks