General
-
Target
0d08c0e7052e888222a38438ff1fe9cbf6f74ead66d96fcee57d91086f245e0e
-
Size
216KB
-
Sample
220212-jgwarsbbhj
-
MD5
78dd2268b3bd2e2c04ef72062a231776
-
SHA1
3ee8b807d56d642b811e360ef88917330c165c74
-
SHA256
0d08c0e7052e888222a38438ff1fe9cbf6f74ead66d96fcee57d91086f245e0e
-
SHA512
34c9d45fcc3882fca66bfc423c15cc949d75b45274a4a54703778ae402df81e76380036ad9927c791a39d8250b759f2a4307e204d223e8edd4338425c9038bc3
Static task
static1
Behavioral task
behavioral1
Sample
0d08c0e7052e888222a38438ff1fe9cbf6f74ead66d96fcee57d91086f245e0e.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
0d08c0e7052e888222a38438ff1fe9cbf6f74ead66d96fcee57d91086f245e0e.exe
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
0d08c0e7052e888222a38438ff1fe9cbf6f74ead66d96fcee57d91086f245e0e
-
Size
216KB
-
MD5
78dd2268b3bd2e2c04ef72062a231776
-
SHA1
3ee8b807d56d642b811e360ef88917330c165c74
-
SHA256
0d08c0e7052e888222a38438ff1fe9cbf6f74ead66d96fcee57d91086f245e0e
-
SHA512
34c9d45fcc3882fca66bfc423c15cc949d75b45274a4a54703778ae402df81e76380036ad9927c791a39d8250b759f2a4307e204d223e8edd4338425c9038bc3
Score10/10-
Sakula Payload
-
suricata: ET MALWARE Sakula/Mivast RAT CnC Beacon 1
suricata: ET MALWARE Sakula/Mivast RAT CnC Beacon 1
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-