General
-
Target
0fe5e04aabc5b555f5817b70c3a5d3e165d6b2b19111deeb2eb3bd07f5d83507
-
Size
216KB
-
Sample
220212-g8qhgsafcm
-
MD5
7f2866891a309521bab87f1fb3a92fc5
-
SHA1
e9135bfdf1915cd8488a4306c421f38550e8caea
-
SHA256
0fe5e04aabc5b555f5817b70c3a5d3e165d6b2b19111deeb2eb3bd07f5d83507
-
SHA512
7dbc243a1cdef6c8191b5e24ddd789ad1995124ea9906cf2c49b971dc4a65713dd21efaf1d47f4bda3d0ea465e08540b859f92d381be9de725f6d861430915d9
Static task
static1
Behavioral task
behavioral1
Sample
0fe5e04aabc5b555f5817b70c3a5d3e165d6b2b19111deeb2eb3bd07f5d83507.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
0fe5e04aabc5b555f5817b70c3a5d3e165d6b2b19111deeb2eb3bd07f5d83507.exe
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
0fe5e04aabc5b555f5817b70c3a5d3e165d6b2b19111deeb2eb3bd07f5d83507
-
Size
216KB
-
MD5
7f2866891a309521bab87f1fb3a92fc5
-
SHA1
e9135bfdf1915cd8488a4306c421f38550e8caea
-
SHA256
0fe5e04aabc5b555f5817b70c3a5d3e165d6b2b19111deeb2eb3bd07f5d83507
-
SHA512
7dbc243a1cdef6c8191b5e24ddd789ad1995124ea9906cf2c49b971dc4a65713dd21efaf1d47f4bda3d0ea465e08540b859f92d381be9de725f6d861430915d9
Score10/10-
Sakula Payload
-
suricata: ET MALWARE Sakula/Mivast RAT CnC Beacon 1
suricata: ET MALWARE Sakula/Mivast RAT CnC Beacon 1
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-