General
-
Target
130d67c50bd649897b9198b090f6137b792a8415a03abf04b13063eaa93ac678
-
Size
19KB
-
Sample
220603-qt62csbgdn
-
MD5
4f3cfe776b67016579985dcae493079c
-
SHA1
d7f77c3dabc8ee72bbaee9c8dcd5bfe79ce2f777
-
SHA256
130d67c50bd649897b9198b090f6137b792a8415a03abf04b13063eaa93ac678
-
SHA512
3b767573ad3919b7765a64ba31134e0a19a297fb72a4c9f7f89e72e3f9f0d1d69807a838d762c993cfa2bba1fa6f55c7c360296599b7f4d9e10c7923ae425066
Malware Config
Targets
-
-
Target
130d67c50bd649897b9198b090f6137b792a8415a03abf04b13063eaa93ac678
-
Size
19KB
-
MD5
4f3cfe776b67016579985dcae493079c
-
SHA1
d7f77c3dabc8ee72bbaee9c8dcd5bfe79ce2f777
-
SHA256
130d67c50bd649897b9198b090f6137b792a8415a03abf04b13063eaa93ac678
-
SHA512
3b767573ad3919b7765a64ba31134e0a19a297fb72a4c9f7f89e72e3f9f0d1d69807a838d762c993cfa2bba1fa6f55c7c360296599b7f4d9e10c7923ae425066
Score10/10-
Sakula
Sakula is a remote access trojan with various capabilities.
-
suricata: ET MALWARE Possible DEEP PANDA C2 Activity
suricata: ET MALWARE Possible DEEP PANDA C2 Activity
-
suricata: ET MALWARE Possible Deep Panda - Sakula/Mivast RAT CnC Beacon 5
suricata: ET MALWARE Possible Deep Panda - Sakula/Mivast RAT CnC Beacon 5
-
suricata: ET MALWARE Sakula/Mivast C2 Activity
suricata: ET MALWARE Sakula/Mivast C2 Activity
-
Executes dropped EXE
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-