General
-
Target
91490bff054fa248fd40f33cd7b5cd7c06b56b0d61fbacea4f55f20444042bcf
-
Size
79KB
-
Sample
230809-29jrjsgb73
-
MD5
549231ffdfd99eee6ed23542d0876b70
-
SHA1
df18c69fdef7bf0f01c0128c78cf6725d37d049d
-
SHA256
91490bff054fa248fd40f33cd7b5cd7c06b56b0d61fbacea4f55f20444042bcf
-
SHA512
d3ea472ef9d1da543fd23f6bf419a98100f38341871fded2a5ed71d3d8216f23b3474ecac7a174a0e8bae4c8c80a4ce2dc97171389a50518fb2cc71025ddb05c
-
SSDEEP
1536:MSoaj1hJL1S9t0MIeboal8bCKxo7h0RP0jwHVz30rtro9:M90hpgz6xGhTjwHN30BE9
Malware Config
Targets
-
-
Target
91490bff054fa248fd40f33cd7b5cd7c06b56b0d61fbacea4f55f20444042bcf
-
Size
79KB
-
MD5
549231ffdfd99eee6ed23542d0876b70
-
SHA1
df18c69fdef7bf0f01c0128c78cf6725d37d049d
-
SHA256
91490bff054fa248fd40f33cd7b5cd7c06b56b0d61fbacea4f55f20444042bcf
-
SHA512
d3ea472ef9d1da543fd23f6bf419a98100f38341871fded2a5ed71d3d8216f23b3474ecac7a174a0e8bae4c8c80a4ce2dc97171389a50518fb2cc71025ddb05c
-
SSDEEP
1536:MSoaj1hJL1S9t0MIeboal8bCKxo7h0RP0jwHVz30rtro9:M90hpgz6xGhTjwHN30BE9
Score10/10-
Sakula
Sakula is a remote access trojan with various capabilities.
-
Sakula payload
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-