463842e56e3ae95d1fe8feaee541dc88a31f4f1f48330c6c78df9661e3181949

Submit
Reports

Overview

overview

Static

static

Orcus Admi...on.exe

windows11-21h2-x64

Orcus Admi...ew.vbs

windows11-21h2-x64

Orcus Admi...er.vbs

windows11-21h2-x64

Orcus Admi...es.vbs

windows11-21h2-x64

Orcus Admi...ons.js

windows11-21h2-x64

Orcus Admi...er.dll

windows11-21h2-x64

Orcus Admi...il.dll

windows11-21h2-x64

Orcus Admi...ns.dll

windows11-21h2-x64

Orcus Admi...ns.dll

windows11-21h2-x64

Orcus Admi...ed.dll

windows11-21h2-x64

Orcus Admi...it.dll

windows11-21h2-x64

Orcus Admi...es.dll

windows11-21h2-x64

Orcus Admi...er.dll

windows11-21h2-x64

Orcus Admi...ent.js

windows11-21h2-x64

Orcus Admi...del.js

windows11-21h2-x64

Orcus Admi...gin.js

windows11-21h2-x64

Orcus Admi...er.vbs

windows11-21h2-x64

Orcus Admi...es.vbs

windows11-21h2-x64

Orcus Admi...ro.dll

windows11-21h2-x64

Orcus Admi...st.dll

windows11-21h2-x64

Orcus Admi...it.dll

windows11-21h2-x64

Orcus Admi...ty.dll

windows11-21h2-x64

Orcus Admi...es.dll

windows11-21h2-x64

Orcus Admi...il.dll

windows11-21h2-x64

Orcus Admi...ns.dll

windows11-21h2-x64

Orcus Admi...ns.dll

windows11-21h2-x64

Orcus Admi...ed.dll

windows11-21h2-x64

Orcus Admi...st.dll

windows11-21h2-x64

Orcus Admi...it.dll

windows11-21h2-x64

Orcus Admi...ty.dll

windows11-21h2-x64

Orcus Admi...es.dll

windows11-21h2-x64

Orcus Admi...cs.dll

windows11-21h2-x64

Analysis

max time kernel
84s
max time network
97s
platform
windows11-21h2_x64
resource
win11-20241007-en
resource tags

arch:x64arch:x86image:win11-20241007-enlocale:en-usos:windows11-21h2-x64system
submitted
10-11-2024 18:37

Sharing

Copy URL

Twitter E-mail

Static task

static1

orcus

5 signatures

Behavioral task

behavioral1

Sample

Orcus Administartion/Orcus.Administration.exe

Resource

win11-20241007-en

discovery

windows11-21h2-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

Orcus Administartion/Orcus.Plugins.ExtensionSpoofer-master/Source/ExtensionSpooferBuilderPropertyView.vbs

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

Orcus Administartion/Orcus.Plugins.ExtensionSpoofer-master/Source/Properties/Resources.Designer.vbs

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

Orcus Administartion/Orcus.Plugins.ExtensionSpoofer-master/Source/Properties/Resources.vbs

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

Orcus Administartion/Orcus.Plugins.ExtensionSpoofer-master/Source/StringExtensions.js

Resource

win11-20241023-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral6

Sample

Orcus Administartion/Orcus.Plugins.ExtensionSpoofer-master/Source/bin/Debug/ExtensionSpoofer.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

Orcus Administartion/Orcus.Plugins.ExtensionSpoofer-master/Source/bin/Debug/Mono.Cecil.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Orcus Administartion/Orcus.Plugins.ExtensionSpoofer-master/Source/bin/Debug/Orcus.Administration.Plugins.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Orcus Administartion/Orcus.Plugins.ExtensionSpoofer-master/Source/bin/Debug/Orcus.Plugins.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Orcus Administartion/Orcus.Plugins.ExtensionSpoofer-master/Source/bin/Debug/Orcus.Shared.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Orcus Administartion/Orcus.Plugins.ExtensionSpoofer-master/Source/bin/Debug/Sorzus.Wpf.Toolkit.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Orcus Administartion/Orcus.Plugins.ExtensionSpoofer-master/Source/bin/Debug/de/Orcus.Plugins.resources.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Orcus Administartion/Orcus.Plugins.ExtensionSpoofer-master/Source/obj/Debug/ExtensionSpoofer.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/Client.js

Resource

win11-20241007-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral15

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/MainViewModel.js

Resource

win11-20241007-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral16

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/Plugin.js

Resource

win11-20241007-en

execution

windows11-21h2-x64

1 signatures

150 seconds

Behavioral task

behavioral17

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/Properties/Resources.Designer.vbs

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/Properties/Resources.vbs

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/bin/Debug/MahApps.Metro.dll

Resource

win11-20241023-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/bin/Debug/ServerStressTest.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/bin/Debug/Sorzus.Wpf.Toolkit.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/bin/Debug/System.Windows.Interactivity.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/bin/Debug/de/Orcus.Plugins.resources.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/bin/Release/Mono.Cecil.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/bin/Release/Orcus.Administration.Plugins.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/bin/Release/Orcus.Plugins.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/bin/Release/Orcus.Shared.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/bin/Release/ServerStressTest.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/bin/Release/Sorzus.Wpf.Toolkit.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/bin/Release/System.Windows.Interactivity.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/bin/Release/de/Orcus.Plugins.resources.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Orcus Administartion/Orcus.Plugins.ServerStressTest-master/Source/obj/Debug/TempPE/Properties.Resources.Designer.cs.dll

Resource

win11-20241007-en

windows11-21h2-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Orcus Administartion/Orcus.Plugins.ExtensionSpoofer-master/Source/ExtensionSpooferBuilderPropertyView.vbs
Size

4KB
MD5

4d92133790415c9a6c8ed5767b74ecc1
SHA1

7f695a07dded8f85db884dd4099b0faeaa69901e
SHA256

a84c4726b377811cf0bae53d143d1747ec1c026153c02c82d5639751b31831eb
SHA512

5674f411be8e4306ff8975b1435c3d9cad1b7340accbf227e4c77739e48e68c296acf935294ed668f27ab9bd500432ea91279b52f180ab3517c107f028a4a591
SSDEEP

96:Jo414h4DOzP8gkIee3GJfk7ZscW3Bs1Dtc+j6rtskBrNlraUr2iDI:9GK3gKX9k7ZscW3Bs1Dtc+GRvBBluUS7

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\System32\WScript.exe
"C:\Windows\System32\WScript.exe" "C:\Users\Admin\AppData\Local\Temp\Orcus Administartion\Orcus.Plugins.ExtensionSpoofer-master\Source\ExtensionSpooferBuilderPropertyView.vbs"
1⤵
PID:1404

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads