General

  • Target

    16c9ee1c6e4365597e336c8ffeb38d7d_JaffaCakes118

  • Size

    3.2MB

  • Sample

    240627-vkjlxs1cjd

  • MD5

    16c9ee1c6e4365597e336c8ffeb38d7d

  • SHA1

    3869555724d34963f5406454170d2f059cc670fe

  • SHA256

    44122740f455f22cc366cccc81af7be5e78d1759700eafff6d3f9ba20b70c908

  • SHA512

    40c265daafd6b833e63a47d3fcf237babcda842b411e108611d5efda565f4d28877cbda1a594309694203276fe1f94899e1ef4a516f71c1ef2d38e59e51be6cf

  • SSDEEP

    49152:aKMib8rrcI0AilFEvxHPvmYCk3CZC8Z6uIvOz6:aKqmRkSZC8ZgJ

Malware Config

Targets

    • Target

      16c9ee1c6e4365597e336c8ffeb38d7d_JaffaCakes118

    • Size

      3.2MB

    • MD5

      16c9ee1c6e4365597e336c8ffeb38d7d

    • SHA1

      3869555724d34963f5406454170d2f059cc670fe

    • SHA256

      44122740f455f22cc366cccc81af7be5e78d1759700eafff6d3f9ba20b70c908

    • SHA512

      40c265daafd6b833e63a47d3fcf237babcda842b411e108611d5efda565f4d28877cbda1a594309694203276fe1f94899e1ef4a516f71c1ef2d38e59e51be6cf

    • SSDEEP

      49152:aKMib8rrcI0AilFEvxHPvmYCk3CZC8Z6uIvOz6:aKqmRkSZC8ZgJ

    • Orcus

      Orcus is a Remote Access Trojan that is being sold on underground forums.

    • Orcurs Rat Executable

MITRE ATT&CK Enterprise v15

Tasks