orcus | cc82ceb198727cf5a63dfb16292254f6854f429368c8d40f63e6b640f682d573 | Triage

Submit
Reports

Overview

overview

Static

static

NeuroX.exe

windows11-21h2-x64

6

Sharing

General

Target

NeuroX.exe
Size

912KB
Sample

250222-nv55caxj13
MD5

5d2a98d8409293018dd9ba26655cb69e
SHA1

a1a5bdea7eec0498142cde5618914adc02d12872
SHA256

cc82ceb198727cf5a63dfb16292254f6854f429368c8d40f63e6b640f682d573
SHA512

cc26182ab981bb892946f964ffbe3649513e1762da40c08c475e88dfd024ed1a8571e5bff4079621efb7ec7896f0e5d179273250ac416b9a30db8c1049818c9e
SSDEEP

12288:6WtIapkocPF7BPE7dG1lFlWcYT70pxnnaaoawVmJaBGyrZNrI0AilFEvxHvBMBa5:sdw4MROxnFLaBrZlI0AilFEvxHiBa5

Score

10^/10

orcus

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

NeuroX.exe

Resource

win11-20250218-en

windows11-21h2-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

orcus

C2

dandev.us.to:1015

Mutex

70c81828adcb4ba3812e2dc74bfa0f4d

Attributes

autostart_method
Disable
enable_keylogger
false
install_path
%programfiles%\Orcus\Orcus.exe
reconnect_delay
10000
registry_keyname
Orcus
taskscheduler_taskname
Orcus
watchdog_path
AppData\OrcusWatchdog.exe

Targets

- Target
  
  NeuroX.exe
- Size
  
  912KB
- MD5
  
  5d2a98d8409293018dd9ba26655cb69e
- SHA1
  
  a1a5bdea7eec0498142cde5618914adc02d12872
- SHA256
  
  cc82ceb198727cf5a63dfb16292254f6854f429368c8d40f63e6b640f682d573
- SHA512
  
  cc26182ab981bb892946f964ffbe3649513e1762da40c08c475e88dfd024ed1a8571e5bff4079621efb7ec7896f0e5d179273250ac416b9a30db8c1049818c9e
- SSDEEP
  
  12288:6WtIapkocPF7BPE7dG1lFlWcYT70pxnnaaoawVmJaBGyrZNrI0AilFEvxHvBMBa5:sdw4MROxnFLaBrZlI0AilFEvxHiBa5
Score

6^/10
- Drops desktop.ini file(s)
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy