General
-
Target
bd5c04852e8cc251ceffdfae29b0e70efe96990a394dae1fc27bfbf08c83b79f
-
Size
839KB
-
Sample
241225-bdxqessngx
-
MD5
7ae898af060aab2165ba29bdd37483ee
-
SHA1
3e1c15aa01d351dade4f5d5536a58ce447708459
-
SHA256
bd5c04852e8cc251ceffdfae29b0e70efe96990a394dae1fc27bfbf08c83b79f
-
SHA512
cc9b8ec9da823a3ec158067742a201f0be8f5c415873d149e129055f88a8c0225222f353584c1f40305b1e46794d3468436052ff0fac0bcb8ab5603a9d743c5f
-
SSDEEP
24576:SFS04YNEMuExDiU6E5R9s8xY/2l/drtnIbt+r7:S34auS+UjfU2TrdIbt+r
Malware Config
Extracted
orcus
127.0.0.1
aee5a3941c5642a08f415d01716a77b0
-
administration_rights_required
false
-
anti_debugger
false
-
anti_tcp_analyzer
false
-
antivm
false
-
autostart_method
1
-
change_creation_date
false
-
force_installer_administrator_privileges
false
-
hide_file
false
-
install
false
-
installation_folder
%appdata%\Microsoft\Speech\AudioDriver.exe
-
installservice
false
-
keylogger_enabled
false
-
newcreationdate
12/22/2024 16:33:13
-
plugins
AgEAAA==
-
reconnect_delay
10000
-
registry_autostart_keyname
Audio HD Driver
-
registry_hidden_autostart
false
-
set_admin_flag
false
-
tasksch_name
Audio HD Driver
-
tasksch_request_highest_privileges
false
-
try_other_autostart_onfail
false
Targets
-
-
Target
bd5c04852e8cc251ceffdfae29b0e70efe96990a394dae1fc27bfbf08c83b79f
-
Size
839KB
-
MD5
7ae898af060aab2165ba29bdd37483ee
-
SHA1
3e1c15aa01d351dade4f5d5536a58ce447708459
-
SHA256
bd5c04852e8cc251ceffdfae29b0e70efe96990a394dae1fc27bfbf08c83b79f
-
SHA512
cc9b8ec9da823a3ec158067742a201f0be8f5c415873d149e129055f88a8c0225222f353584c1f40305b1e46794d3468436052ff0fac0bcb8ab5603a9d743c5f
-
SSDEEP
24576:SFS04YNEMuExDiU6E5R9s8xY/2l/drtnIbt+r7:S34auS+UjfU2TrdIbt+r
Score6/10-
Drops desktop.ini file(s)
-