sakula | 136d5a9be1ab3f814aef29abf0242665ebd8590d12c396b340aea3ec2783b46a | Triage

Submit
Reports

Overview

overview

Static

static

136d5a9be1...6a.exe

windows7_x64

3

136d5a9be1...6a.exe

windows10-2004_x64

Sharing

General

Target

136d5a9be1ab3f814aef29abf0242665ebd8590d12c396b340aea3ec2783b46a
Size

100KB
Sample

220212-fvmzrshhgn
MD5

040f672a4e1f1d312a0ff40e1ada4125
SHA1

3ee9f606dd4bb6fb03c37a85f9e401664fa4e837
SHA256

136d5a9be1ab3f814aef29abf0242665ebd8590d12c396b340aea3ec2783b46a
SHA512

a02240c51324a3b6dd2f089d9f05c119ecfac3ba3feffbaf0bc4c8ffaaff0465d12697d728ed61425f13447ed1573d8ec37a07a63fb41fe24144bf274fb0a81f

Score

10^/10

sakula

Static task

static1

Behavioral task

behavioral1

Sample

136d5a9be1ab3f814aef29abf0242665ebd8590d12c396b340aea3ec2783b46a.exe

Resource

win7-en-20211208

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

136d5a9be1ab3f814aef29abf0242665ebd8590d12c396b340aea3ec2783b46a.exe

Resource

win10v2004-en-20220112

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  136d5a9be1ab3f814aef29abf0242665ebd8590d12c396b340aea3ec2783b46a
- Size
  
  100KB
- MD5
  
  040f672a4e1f1d312a0ff40e1ada4125
- SHA1
  
  3ee9f606dd4bb6fb03c37a85f9e401664fa4e837
- SHA256
  
  136d5a9be1ab3f814aef29abf0242665ebd8590d12c396b340aea3ec2783b46a
- SHA512
  
  a02240c51324a3b6dd2f089d9f05c119ecfac3ba3feffbaf0bc4c8ffaaff0465d12697d728ed61425f13447ed1573d8ec37a07a63fb41fe24144bf274fb0a81f
Score

10^/10
- Suspicious use of NtCreateProcessExOtherParentProcess
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy