General
-
Target
10f33d871328e5c534f420cc57677767d0f383a1850f6e52d5ddb3f393128e6b
-
Size
92KB
-
Sample
220212-gsx8dsadeq
-
MD5
1d1f276bdc94719dcf4bf2498aab76d3
-
SHA1
59a94c3405137223ffdd9db22b12caf91422da37
-
SHA256
10f33d871328e5c534f420cc57677767d0f383a1850f6e52d5ddb3f393128e6b
-
SHA512
a0a868b2061f0e92d0b7a1ce41240647b9fa2c774bbc9ab353042ccb93719aeb8f3e8407c95d9d8a32908950ff84a6eb5c4ef2f77cc4c52d07afc251271332e8
Static task
static1
Behavioral task
behavioral1
Sample
10f33d871328e5c534f420cc57677767d0f383a1850f6e52d5ddb3f393128e6b.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
10f33d871328e5c534f420cc57677767d0f383a1850f6e52d5ddb3f393128e6b.exe
Resource
win10v2004-en-20220113
Malware Config
Targets
-
-
Target
10f33d871328e5c534f420cc57677767d0f383a1850f6e52d5ddb3f393128e6b
-
Size
92KB
-
MD5
1d1f276bdc94719dcf4bf2498aab76d3
-
SHA1
59a94c3405137223ffdd9db22b12caf91422da37
-
SHA256
10f33d871328e5c534f420cc57677767d0f383a1850f6e52d5ddb3f393128e6b
-
SHA512
a0a868b2061f0e92d0b7a1ce41240647b9fa2c774bbc9ab353042ccb93719aeb8f3e8407c95d9d8a32908950ff84a6eb5c4ef2f77cc4c52d07afc251271332e8
Score10/10-
Sakula Payload
-
suricata: ET MALWARE Sakula/Mivast RAT CnC Beacon 1
suricata: ET MALWARE Sakula/Mivast RAT CnC Beacon 1
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-