sakula | d5d024a63dbc694980ec512dae9694334acc3de16b0c29b22faf707eb70ad159 | Triage

Submit
Reports

Overview

overview

Static

static

d5d024a63d...59.exe

windows7_x64

d5d024a63d...59.exe

windows10_x64

Sharing

General

Target

d5d024a63dbc694980ec512dae9694334acc3de16b0c29b22faf707eb70ad159
Size

79KB
Sample

220131-bhmq1sdadr
MD5

065aa01311ca8f3e0016d8ae546d30a4
SHA1

fd4fc9439e932952dfb9ef5ce25312aeb70358b1
SHA256

d5d024a63dbc694980ec512dae9694334acc3de16b0c29b22faf707eb70ad159
SHA512

ce244bf0d7bcac927be6f2b29302314f4b1b6016323d14758c564a4935ebb359d2a3ff0dd816a2ef98cc7fe4cdc7c28d3441d7a3cf74bed688b9be8ee75fa4ff

Score

10^/10

sakula persistence rat trojan

Static task

static1

Behavioral task

behavioral1

Sample

d5d024a63dbc694980ec512dae9694334acc3de16b0c29b22faf707eb70ad159.exe

Resource

win7-en-20211208

sakula persistence rat trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

d5d024a63dbc694980ec512dae9694334acc3de16b0c29b22faf707eb70ad159.exe

Resource

win10-en-20211208

sakula persistence rat trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  d5d024a63dbc694980ec512dae9694334acc3de16b0c29b22faf707eb70ad159
- Size
  
  79KB
- MD5
  
  065aa01311ca8f3e0016d8ae546d30a4
- SHA1
  
  fd4fc9439e932952dfb9ef5ce25312aeb70358b1
- SHA256
  
  d5d024a63dbc694980ec512dae9694334acc3de16b0c29b22faf707eb70ad159
- SHA512
  
  ce244bf0d7bcac927be6f2b29302314f4b1b6016323d14758c564a4935ebb359d2a3ff0dd816a2ef98cc7fe4cdc7c28d3441d7a3cf74bed688b9be8ee75fa4ff
Score

10^/10

sakula persistence rat trojan
- Sakula
  Sakula is a remote access trojan with various capabilities.
  trojan rat sakula
- Sakula Payload
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

sakulapersistencerattrojan

behavioral2

sakulapersistencerattrojan

© 2018-2024

Terms | Privacy