General
-
Target
0b3f986af972826dae148bef5bab014045e3befd85d4e55667996384d70f795f
-
Size
216KB
-
Sample
220212-j9cdcsbfbp
-
MD5
a6ca73aecd63da58015f6d0a886fe4ad
-
SHA1
2b5f2b8039700cfef989b5a245d5695419af09dc
-
SHA256
0b3f986af972826dae148bef5bab014045e3befd85d4e55667996384d70f795f
-
SHA512
f104add0c0dc45d4b9a25fc7a1140472772918ad3137dfe5a5afdd928e1e25d4f521df41a1d5ee752a4b2274ac9e32286f01bdfd0e9733543e5bc27ba1da07b1
Static task
static1
Behavioral task
behavioral1
Sample
0b3f986af972826dae148bef5bab014045e3befd85d4e55667996384d70f795f.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
0b3f986af972826dae148bef5bab014045e3befd85d4e55667996384d70f795f.exe
Resource
win10v2004-en-20220113
Malware Config
Targets
-
-
Target
0b3f986af972826dae148bef5bab014045e3befd85d4e55667996384d70f795f
-
Size
216KB
-
MD5
a6ca73aecd63da58015f6d0a886fe4ad
-
SHA1
2b5f2b8039700cfef989b5a245d5695419af09dc
-
SHA256
0b3f986af972826dae148bef5bab014045e3befd85d4e55667996384d70f795f
-
SHA512
f104add0c0dc45d4b9a25fc7a1140472772918ad3137dfe5a5afdd928e1e25d4f521df41a1d5ee752a4b2274ac9e32286f01bdfd0e9733543e5bc27ba1da07b1
Score10/10-
Sakula Payload
-
suricata: ET MALWARE Sakula/Mivast RAT CnC Beacon 1
suricata: ET MALWARE Sakula/Mivast RAT CnC Beacon 1
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-