General
-
Target
6c001fd70ea1c71ff5074f615214944ebb666c591f7166673c5b038f41c83c64
-
Size
42KB
-
Sample
220512-tc5nradghk
-
MD5
0f4df6fa818ad0312e163b2d2be1552d
-
SHA1
27f15722c4d0066dca1ac15ec1801a3cfe08f788
-
SHA256
6c001fd70ea1c71ff5074f615214944ebb666c591f7166673c5b038f41c83c64
-
SHA512
97090a3b4bb3237e32fc240f05dcd02b17818788016db505643be368a248b81ee7478b782966969fd2d774ac77a164dd8dd520bd4fc959522acb8a22acc5609d
Malware Config
Targets
-
-
Target
6c001fd70ea1c71ff5074f615214944ebb666c591f7166673c5b038f41c83c64
-
Size
42KB
-
MD5
0f4df6fa818ad0312e163b2d2be1552d
-
SHA1
27f15722c4d0066dca1ac15ec1801a3cfe08f788
-
SHA256
6c001fd70ea1c71ff5074f615214944ebb666c591f7166673c5b038f41c83c64
-
SHA512
97090a3b4bb3237e32fc240f05dcd02b17818788016db505643be368a248b81ee7478b782966969fd2d774ac77a164dd8dd520bd4fc959522acb8a22acc5609d
Score10/10-
Sakula
Sakula is a remote access trojan with various capabilities.
-
suricata: ET MALWARE Possible DEEP PANDA C2 Activity
suricata: ET MALWARE Possible DEEP PANDA C2 Activity
-
suricata: ET MALWARE Possible Deep Panda - Sakula/Mivast RAT CnC Beacon 5
suricata: ET MALWARE Possible Deep Panda - Sakula/Mivast RAT CnC Beacon 5
-
suricata: ET MALWARE Sakula/Mivast C2 Activity
suricata: ET MALWARE Sakula/Mivast C2 Activity
-
Executes dropped EXE
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-