sakula | 4e9d663bfecd6a9f5172c11bcc54d632615f9b8a24aa2985faade63e4be286f3 | Triage

Submit
Reports

Overview

overview

Static

static

4e9d663bfe...f3.exe

windows7_x64

4e9d663bfe...f3.exe

windows10_x64

Sharing

General

Target

4e9d663bfecd6a9f5172c11bcc54d632615f9b8a24aa2985faade63e4be286f3
Size

89KB
Sample

220122-afjqxaebh6
MD5

e9115f553ac156542dcd38042f45ec68
SHA1

a36c2d74acc93140fc028fbba56e47a7bc5aeff4
SHA256

4e9d663bfecd6a9f5172c11bcc54d632615f9b8a24aa2985faade63e4be286f3
SHA512

a6528d51dfe0563329358a6d63f45a1b6424944c49f10aabecbd1112999789b4989cf78542d0253a453f2f4401ced97a30d95c42f87dba04ce13d3069ba66249

Score

10^/10

sakula persistence rat trojan

Static task

static1

Behavioral task

behavioral1

Sample

4e9d663bfecd6a9f5172c11bcc54d632615f9b8a24aa2985faade63e4be286f3.exe

Resource

win7-en-20211208

sakula persistence rat trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

4e9d663bfecd6a9f5172c11bcc54d632615f9b8a24aa2985faade63e4be286f3.exe

Resource

win10-en-20211208

sakula persistence rat trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  4e9d663bfecd6a9f5172c11bcc54d632615f9b8a24aa2985faade63e4be286f3
- Size
  
  89KB
- MD5
  
  e9115f553ac156542dcd38042f45ec68
- SHA1
  
  a36c2d74acc93140fc028fbba56e47a7bc5aeff4
- SHA256
  
  4e9d663bfecd6a9f5172c11bcc54d632615f9b8a24aa2985faade63e4be286f3
- SHA512
  
  a6528d51dfe0563329358a6d63f45a1b6424944c49f10aabecbd1112999789b4989cf78542d0253a453f2f4401ced97a30d95c42f87dba04ce13d3069ba66249
Score

10^/10

sakula persistence rat trojan
- Sakula
  Sakula is a remote access trojan with various capabilities.
  trojan rat sakula
- Sakula Payload
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

sakulapersistencerattrojan

behavioral2

sakulapersistencerattrojan

© 2018-2024

Terms | Privacy