General
-
Target
08fdcadbde2a7a2930d0f15b2308d328fb23cb3fabe9c3e63aa8fb996614da75
-
Size
168KB
-
Sample
220212-ltf3qacdfn
-
MD5
260a144ada001658efca20d1eea5471d
-
SHA1
42996a9d9a24471d9b0fd63f04b6cae745bf45b4
-
SHA256
08fdcadbde2a7a2930d0f15b2308d328fb23cb3fabe9c3e63aa8fb996614da75
-
SHA512
582a9aebfa730e1c345404965f851c4623ed9f6367d535244f91bba51a3ca4f75bac90b5d93800a2b90f7bf0e82e1db3d497d06982ade4ebb20d1a53eb58bd7a
Static task
static1
Behavioral task
behavioral1
Sample
08fdcadbde2a7a2930d0f15b2308d328fb23cb3fabe9c3e63aa8fb996614da75.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
08fdcadbde2a7a2930d0f15b2308d328fb23cb3fabe9c3e63aa8fb996614da75.exe
Resource
win10v2004-en-20220113
Malware Config
Targets
-
-
Target
08fdcadbde2a7a2930d0f15b2308d328fb23cb3fabe9c3e63aa8fb996614da75
-
Size
168KB
-
MD5
260a144ada001658efca20d1eea5471d
-
SHA1
42996a9d9a24471d9b0fd63f04b6cae745bf45b4
-
SHA256
08fdcadbde2a7a2930d0f15b2308d328fb23cb3fabe9c3e63aa8fb996614da75
-
SHA512
582a9aebfa730e1c345404965f851c4623ed9f6367d535244f91bba51a3ca4f75bac90b5d93800a2b90f7bf0e82e1db3d497d06982ade4ebb20d1a53eb58bd7a
Score10/10-
Sakula Payload
-
suricata: ET MALWARE Sakula/Mivast RAT CnC Beacon 1
suricata: ET MALWARE Sakula/Mivast RAT CnC Beacon 1
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-