General
-
Target
9e975ba0e67a3a13556a92152af9d9d7b1443aebde4332c54b63bb8e05ae3a0e
-
Size
104KB
-
Sample
220323-ljlv8agbcn
-
MD5
49462ddd5d404f016ff2f73e163ac899
-
SHA1
c1b974717bcab23cbc45ede0dca54ba2022afa00
-
SHA256
9e975ba0e67a3a13556a92152af9d9d7b1443aebde4332c54b63bb8e05ae3a0e
-
SHA512
357a65dfbc834c6ef24bf6625573652b7496cdb7779086727401297b481f18a33f27efa6b76ecbe1cb5cca3e536fae847501c85eb50d208a52faf10574ddc071
Static task
static1
Behavioral task
behavioral1
Sample
9e975ba0e67a3a13556a92152af9d9d7b1443aebde4332c54b63bb8e05ae3a0e.exe
Resource
win7-20220310-en
Behavioral task
behavioral2
Sample
9e975ba0e67a3a13556a92152af9d9d7b1443aebde4332c54b63bb8e05ae3a0e.exe
Resource
win10v2004-20220310-en
Malware Config
Targets
-
-
Target
9e975ba0e67a3a13556a92152af9d9d7b1443aebde4332c54b63bb8e05ae3a0e
-
Size
104KB
-
MD5
49462ddd5d404f016ff2f73e163ac899
-
SHA1
c1b974717bcab23cbc45ede0dca54ba2022afa00
-
SHA256
9e975ba0e67a3a13556a92152af9d9d7b1443aebde4332c54b63bb8e05ae3a0e
-
SHA512
357a65dfbc834c6ef24bf6625573652b7496cdb7779086727401297b481f18a33f27efa6b76ecbe1cb5cca3e536fae847501c85eb50d208a52faf10574ddc071
Score10/10-
Sakula Payload
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-