General
-
Target
08a291482bb256e6ecce5a8ecbb2a91d6e3f5c66486b7ef288ea85f9f9958d80
-
Size
216KB
-
Sample
220212-lxjm1sahb2
-
MD5
f2c78d4bc66c26308c5cc20ad89cad23
-
SHA1
01bba18a315ebf0b539e779c585b8a5982dd6be9
-
SHA256
08a291482bb256e6ecce5a8ecbb2a91d6e3f5c66486b7ef288ea85f9f9958d80
-
SHA512
e62416b1451c3b75a7fca6197accd44fc55c2839fdeec7a420301974b2cc99e91c1dbf05704067a2eae78cb2c9e8385f5f7647471e3b5a3410a0d930956ccac8
Static task
static1
Behavioral task
behavioral1
Sample
08a291482bb256e6ecce5a8ecbb2a91d6e3f5c66486b7ef288ea85f9f9958d80.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
08a291482bb256e6ecce5a8ecbb2a91d6e3f5c66486b7ef288ea85f9f9958d80.exe
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
08a291482bb256e6ecce5a8ecbb2a91d6e3f5c66486b7ef288ea85f9f9958d80
-
Size
216KB
-
MD5
f2c78d4bc66c26308c5cc20ad89cad23
-
SHA1
01bba18a315ebf0b539e779c585b8a5982dd6be9
-
SHA256
08a291482bb256e6ecce5a8ecbb2a91d6e3f5c66486b7ef288ea85f9f9958d80
-
SHA512
e62416b1451c3b75a7fca6197accd44fc55c2839fdeec7a420301974b2cc99e91c1dbf05704067a2eae78cb2c9e8385f5f7647471e3b5a3410a0d930956ccac8
Score10/10-
Sakula Payload
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-