sakula | 0cf43d7ee166f14fe6914c09e0293bff83136d836f2e7fc897fde05896ddf415 | Triage

Submit
Reports

Overview

overview

Static

static

0cf43d7ee1...15.exe

windows7_x64

3

0cf43d7ee1...15.exe

windows10-2004_x64

Sharing

General

Target

0cf43d7ee166f14fe6914c09e0293bff83136d836f2e7fc897fde05896ddf415
Size

100KB
Sample

220212-jhh2tshfe4
MD5

ea095af933248fbbd0171d5cc26b16ac
SHA1

7b55b58d3d564d1f8f472d05b5dd9e0a836d0073
SHA256

0cf43d7ee166f14fe6914c09e0293bff83136d836f2e7fc897fde05896ddf415
SHA512

6e7df2e06c56679be937622173c5c02f3547272a9265e95df25a2fbc3d4a5a4f7c8aac9c640e15d6e424616a7782063c3ce44e4d4738dd8ae2f54521ab5cf4f2

Score

10^/10

sakula

Static task

static1

Behavioral task

behavioral1

Sample

0cf43d7ee166f14fe6914c09e0293bff83136d836f2e7fc897fde05896ddf415.exe

Resource

win7-en-20211208

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

0cf43d7ee166f14fe6914c09e0293bff83136d836f2e7fc897fde05896ddf415.exe

Resource

win10v2004-en-20220113

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  0cf43d7ee166f14fe6914c09e0293bff83136d836f2e7fc897fde05896ddf415
- Size
  
  100KB
- MD5
  
  ea095af933248fbbd0171d5cc26b16ac
- SHA1
  
  7b55b58d3d564d1f8f472d05b5dd9e0a836d0073
- SHA256
  
  0cf43d7ee166f14fe6914c09e0293bff83136d836f2e7fc897fde05896ddf415
- SHA512
  
  6e7df2e06c56679be937622173c5c02f3547272a9265e95df25a2fbc3d4a5a4f7c8aac9c640e15d6e424616a7782063c3ce44e4d4738dd8ae2f54521ab5cf4f2
Score

10^/10
- Suspicious use of NtCreateProcessExOtherParentProcess
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy