General
-
Target
192fe613265f5df396bf6eb4703c593399db398018378e499b5cea140ed400eb
-
Size
176KB
-
Sample
220212-ddekysgfgk
-
MD5
67611f49b6938475a2f829cbb9c5c740
-
SHA1
a137905fe8ff2c92ea5d4c6d1fbb304c7f1b4f9c
-
SHA256
192fe613265f5df396bf6eb4703c593399db398018378e499b5cea140ed400eb
-
SHA512
56668442cde29d335250c80d179b3d2e6dae20cb855cf508460eee932c00e8ec088a350f2a70b1929b6d9c2b7c833ccca55b9bdb7b92ad6658daf8f59dac800d
Static task
static1
Behavioral task
behavioral1
Sample
192fe613265f5df396bf6eb4703c593399db398018378e499b5cea140ed400eb.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
192fe613265f5df396bf6eb4703c593399db398018378e499b5cea140ed400eb.exe
Resource
win10v2004-en-20220113
Malware Config
Targets
-
-
Target
192fe613265f5df396bf6eb4703c593399db398018378e499b5cea140ed400eb
-
Size
176KB
-
MD5
67611f49b6938475a2f829cbb9c5c740
-
SHA1
a137905fe8ff2c92ea5d4c6d1fbb304c7f1b4f9c
-
SHA256
192fe613265f5df396bf6eb4703c593399db398018378e499b5cea140ed400eb
-
SHA512
56668442cde29d335250c80d179b3d2e6dae20cb855cf508460eee932c00e8ec088a350f2a70b1929b6d9c2b7c833ccca55b9bdb7b92ad6658daf8f59dac800d
Score10/10-
Sakula Payload
-
suricata: ET MALWARE Sakula/Mivast RAT CnC Beacon 1
suricata: ET MALWARE Sakula/Mivast RAT CnC Beacon 1
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-