General
-
Target
bed112b385fa1c816dee97964167fad7
-
Size
43KB
-
Sample
220908-ynapzacghm
-
MD5
bed112b385fa1c816dee97964167fad7
-
SHA1
dc76effd41fcf4097e180a418d4ff9b2564b14c5
-
SHA256
b9b4486fce211476beef8da8b0719448514741c0d66241f33c043bfe52921232
-
SHA512
4932e363fcdc7ea814ee26cbddbd03df7dcece4859ba8b9b4a6e8d491dd4dd01db17acd36d368d95546b22cea075bdb6dab6e70433a908f93421be7f7f62c256
-
SSDEEP
384:MnyhSksAVndb4G3w2NMsG9OqvhyY3Q6oVxYwwsRhg7+iXXRodY6kLdAeMJ:1hSksandb4GgyMsp4hyYtoVxYdT7ZXqB
Malware Config
Targets
-
-
Target
bed112b385fa1c816dee97964167fad7
-
Size
43KB
-
MD5
bed112b385fa1c816dee97964167fad7
-
SHA1
dc76effd41fcf4097e180a418d4ff9b2564b14c5
-
SHA256
b9b4486fce211476beef8da8b0719448514741c0d66241f33c043bfe52921232
-
SHA512
4932e363fcdc7ea814ee26cbddbd03df7dcece4859ba8b9b4a6e8d491dd4dd01db17acd36d368d95546b22cea075bdb6dab6e70433a908f93421be7f7f62c256
-
SSDEEP
384:MnyhSksAVndb4G3w2NMsG9OqvhyY3Q6oVxYwwsRhg7+iXXRodY6kLdAeMJ:1hSksandb4GgyMsp4hyYtoVxYdT7ZXqB
Score10/10-
Sakula
Sakula is a remote access trojan with various capabilities.
-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-