General
-
Target
0f092760d761b74581b6263374d164cca0c3d6cf32e7e6970711f985749ad156
-
Size
79KB
-
Sample
220212-hjce1ahbh6
-
MD5
67d21006cb9c3141f7cb8d6c48d9e9c2
-
SHA1
514d996c51f6f1762d367b8f710f2598cd57ee43
-
SHA256
0f092760d761b74581b6263374d164cca0c3d6cf32e7e6970711f985749ad156
-
SHA512
3a46263d08591c6d672a395f2a1d6ef46915df0e9e0660a5277dadd05ea6e14a4bb8baf57d78ea3a3fc06fc15bda53b7b5126c5c6c8aaa313b17e400cc88a849
Static task
static1
Behavioral task
behavioral1
Sample
0f092760d761b74581b6263374d164cca0c3d6cf32e7e6970711f985749ad156.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
0f092760d761b74581b6263374d164cca0c3d6cf32e7e6970711f985749ad156.exe
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
0f092760d761b74581b6263374d164cca0c3d6cf32e7e6970711f985749ad156
-
Size
79KB
-
MD5
67d21006cb9c3141f7cb8d6c48d9e9c2
-
SHA1
514d996c51f6f1762d367b8f710f2598cd57ee43
-
SHA256
0f092760d761b74581b6263374d164cca0c3d6cf32e7e6970711f985749ad156
-
SHA512
3a46263d08591c6d672a395f2a1d6ef46915df0e9e0660a5277dadd05ea6e14a4bb8baf57d78ea3a3fc06fc15bda53b7b5126c5c6c8aaa313b17e400cc88a849
Score10/10-
Sakula Payload
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-