Overview

overview

10

Static

static

10

NEAS.cad59...40.exe

windows7-x64

10

NEAS.cad59...40.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    22-10-2023 17:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.cad59573f5f98253991a19bff2961140.exe

  • Size

    40KB

  • MD5

    cad59573f5f98253991a19bff2961140

  • SHA1

    c5064546978b97d8f00b148e3672ab2ea8d4ed41

  • SHA256

    13bc232331a334a3b20783148d3026ffcd76049a6a2a7f05a16db41b71549d9d

  • SHA512

    1ea0324a8bbb132aa0838419acc38efa40a6e3444f6fc5d74fece35e5ee37f9d5e5f528e6c5013f505bc5490a0115c28f9872261cea5330c2784d002c06fded2

  • SSDEEP

    768:q29Pf5IH4hyYtoVxYG9mHfCBJTAIO3Ot:F7XhyYtkYX/CPnO3

Score
10/10
sakularattrojan

Malware Config

Signatures

  • Sakula

    Sakula is a remote access trojan with various capabilities.

    trojanratsakula

Processes

  • C:\Users\Admin\AppData\Local\Temp\NEAS.cad59573f5f98253991a19bff2961140.exe
    "C:\Users\Admin\AppData\Local\Temp\NEAS.cad59573f5f98253991a19bff2961140.exe"
    1⤵
      PID:1192

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1192-0-0x0000000000400000-0x000000000040A000-memory.dmp
      Filesize

      40KB

      Download