General

  • Target

    easyMalicious04f2c26a27bc.exe

  • Size

    418KB

  • MD5

    1ab5eb4a17127c6b5e4ae15a8757737c

  • SHA1

    e3a9ef10f4badc0904f8be060945c5fab383ac49

  • SHA256

    f3f4e690f55d8246bbb2c456dba2b551fa77ecedf273b83480f2e0f37f1219c0

  • SHA512

    ebe284500429696a15351ee24be0683a1a0380d0cd9298504f2ef363cc94d31bbbe65721d47b04801a1319d4114497240acd7747415e41d1cc4c42669ccb0f2a

  • SSDEEP

    6144:M29qRfVSndj30B3wBxE1+ijiBKk3etdgI2MyzNORQtOfl1qNVo7R+S+N/TU7kn5f:0RfQn+w8EYiBlMkn5f9J105i

Score
10/10

Malware Config

Extracted

Family

sakula

C2

www.polarroute.com

Signatures

  • Sakula family
  • Sakula payload 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • easyMalicious04f2c26a27bc.exe
    .exe windows x86

    4511896d043677e4ab4578dc5bcab5a0


    Headers

    Imports

    Sections