General
-
Target
0a7716f1181b101b8796a6b4dea2fee17b815378939afae70f1f71626ef9935d
-
Size
92KB
-
Sample
220212-k92tpacbcr
-
MD5
08899e9f590078050999c75c94a6878b
-
SHA1
92c981a580c64e8cfe4f73dd64c242de8306cf91
-
SHA256
0a7716f1181b101b8796a6b4dea2fee17b815378939afae70f1f71626ef9935d
-
SHA512
b54bf9e4f40c3a480c58df87148b80924a8ea70bba080a8b67f7f0c8f4d67cca4397678566bf0d5a1d75d680e714c1fd5785fb5055c705584debed074df9d9b8
Static task
static1
Behavioral task
behavioral1
Sample
0a7716f1181b101b8796a6b4dea2fee17b815378939afae70f1f71626ef9935d.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
0a7716f1181b101b8796a6b4dea2fee17b815378939afae70f1f71626ef9935d.exe
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
0a7716f1181b101b8796a6b4dea2fee17b815378939afae70f1f71626ef9935d
-
Size
92KB
-
MD5
08899e9f590078050999c75c94a6878b
-
SHA1
92c981a580c64e8cfe4f73dd64c242de8306cf91
-
SHA256
0a7716f1181b101b8796a6b4dea2fee17b815378939afae70f1f71626ef9935d
-
SHA512
b54bf9e4f40c3a480c58df87148b80924a8ea70bba080a8b67f7f0c8f4d67cca4397678566bf0d5a1d75d680e714c1fd5785fb5055c705584debed074df9d9b8
Score10/10-
Sakula Payload
-
suricata: ET MALWARE Sakula/Mivast RAT CnC Beacon 1
suricata: ET MALWARE Sakula/Mivast RAT CnC Beacon 1
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-