General
-
Target
08c71352121b43875333e105a84f8548a342a081448aba517bef71f488445c6d
-
Size
101KB
-
Sample
220212-lweyfacdhp
-
MD5
5ac603e1a0062b4e9b03248979c9cd30
-
SHA1
86ac57a134e35bb00082ca1e6d445bee697b6f20
-
SHA256
08c71352121b43875333e105a84f8548a342a081448aba517bef71f488445c6d
-
SHA512
5345e6d824ee63c3b5ed5e0f355273daedcc5f3e4acd41da9b635b23401a459fe9d58775b4d857877e559c3b7115b1032175bfce657e05f5633daf969477749b
Static task
static1
Behavioral task
behavioral1
Sample
08c71352121b43875333e105a84f8548a342a081448aba517bef71f488445c6d.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
08c71352121b43875333e105a84f8548a342a081448aba517bef71f488445c6d.exe
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
08c71352121b43875333e105a84f8548a342a081448aba517bef71f488445c6d
-
Size
101KB
-
MD5
5ac603e1a0062b4e9b03248979c9cd30
-
SHA1
86ac57a134e35bb00082ca1e6d445bee697b6f20
-
SHA256
08c71352121b43875333e105a84f8548a342a081448aba517bef71f488445c6d
-
SHA512
5345e6d824ee63c3b5ed5e0f355273daedcc5f3e4acd41da9b635b23401a459fe9d58775b4d857877e559c3b7115b1032175bfce657e05f5633daf969477749b
Score10/10-
Sakula Payload
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-