General
-
Target
14986310ec92e935b7a45a6bb2f6f1fe43f8cd9f0bd49575ab20ea7f57b67c53
-
Size
216KB
-
Sample
220212-fdfjcshffk
-
MD5
b07590503b3d184a88d6b22013e39d59
-
SHA1
23f3876d91f7748764cc877cb740bf8381f2c51d
-
SHA256
14986310ec92e935b7a45a6bb2f6f1fe43f8cd9f0bd49575ab20ea7f57b67c53
-
SHA512
38c73f6ba4280e2f48a4c08effcba4d5207ae859374b3c8d052d9327eeeb8542e32c19ebff651143a576bbfce4465929d484fe6f91fe590b93414d663a36dc4a
Static task
static1
Behavioral task
behavioral1
Sample
14986310ec92e935b7a45a6bb2f6f1fe43f8cd9f0bd49575ab20ea7f57b67c53.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
14986310ec92e935b7a45a6bb2f6f1fe43f8cd9f0bd49575ab20ea7f57b67c53.exe
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
14986310ec92e935b7a45a6bb2f6f1fe43f8cd9f0bd49575ab20ea7f57b67c53
-
Size
216KB
-
MD5
b07590503b3d184a88d6b22013e39d59
-
SHA1
23f3876d91f7748764cc877cb740bf8381f2c51d
-
SHA256
14986310ec92e935b7a45a6bb2f6f1fe43f8cd9f0bd49575ab20ea7f57b67c53
-
SHA512
38c73f6ba4280e2f48a4c08effcba4d5207ae859374b3c8d052d9327eeeb8542e32c19ebff651143a576bbfce4465929d484fe6f91fe590b93414d663a36dc4a
Score10/10-
Sakula Payload
-
suricata: ET MALWARE Sakula/Mivast RAT CnC Beacon 1
suricata: ET MALWARE Sakula/Mivast RAT CnC Beacon 1
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-