Overview

overview

10

Static

static

10

Orcus 1.9....on.exe

windows7-x64

3

Orcus 1.9....on.exe

windows10-2004-x64

3

Orcus 1.9....ow.dll

windows7-x64

1

Orcus 1.9....ow.dll

windows10-2004-x64

1

Orcus 1.9....eo.dll

windows7-x64

1

Orcus 1.9....eo.dll

windows10-2004-x64

1

Orcus 1.9....ox.dll

windows7-x64

1

Orcus 1.9....ox.dll

windows10-2004-x64

1

Orcus 1.9....re.dll

windows7-x64

1

Orcus 1.9....re.dll

windows10-2004-x64

1

Orcus 1.9....Ex.dll

windows7-x64

1

Orcus 1.9....Ex.dll

windows10-2004-x64

1

Orcus 1.9....ed.dll

windows7-x64

1

Orcus 1.9....ed.dll

windows10-2004-x64

1

Orcus 1.9....ed.dll

windows7-x64

1

Orcus 1.9....ed.dll

windows10-2004-x64

1

Orcus 1.9....er.dll

windows7-x64

1

Orcus 1.9....er.dll

windows10-2004-x64

1

Orcus 1.9....op.dll

windows7-x64

1

Orcus 1.9....op.dll

windows10-2004-x64

1

Orcus 1.9....it.dll

windows7-x64

1

Orcus 1.9....it.dll

windows10-2004-x64

1

Orcus 1.9....ib.dll

windows7-x64

1

Orcus 1.9....ib.dll

windows10-2004-x64

1

Orcus 1.9....rk.dll

windows7-x64

1

Orcus 1.9....rk.dll

windows10-2004-x64

1

Orcus 1.9....al.dll

windows7-x64

1

Orcus 1.9....al.dll

windows10-2004-x64

1

Orcus 1.9....ro.dll

windows7-x64

1

Orcus 1.9....ro.dll

windows10-2004-x64

1

Orcus 1.9....ks.dll

windows7-x64

1

Orcus 1.9....ks.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    15s
  • max time network
    17s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    14/09/2024, 15:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Orcus 1.9.1 Anti-Takedown/Modded Client/libraries/Exceptionless.Signed.dll

  • Size

    722KB

  • MD5

    1b0128f8b2bf3aafec28817c2031dc70

  • SHA1

    b3ae68cb40a7fa82105e82d292d3e037f1a8d50f

  • SHA256

    98672dfd5c31b77afebc9853539a828836ec72e7d9b0d5f5f5267ad2ebda16ba

  • SHA512

    40e340ef2ed967aa055fd053c80b69a09404a70e97a63aec5598c992c907ac2af40934b6cc81c0980291ab4e89ec16e6eb47e7bc0fb587b4bc2c13d8e26497d7

  • SSDEEP

    12288:zEVDjdxJsjvEk8Zmj0fFK0KpaNDdUdnU7Y7fByyiVrEuRp:zETsjvEjmj0fohkUTfByyiVrEuH

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe "C:\Users\Admin\AppData\Local\Temp\Orcus 1.9.1 Anti-Takedown\Modded Client\libraries\Exceptionless.Signed.dll",#1
    1⤵
      PID:2548

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads