General
-
Target
NEAS.11f259be929c59c020eec833719bec40_JC.exe
-
Size
79KB
-
Sample
231023-t3vapscc57
-
MD5
11f259be929c59c020eec833719bec40
-
SHA1
9ffbb2e3fae91100c70f509ababf2d4b1171e3e7
-
SHA256
194079f9edceaedfa39a70c673f0256f5a8b5d0e447f37f919999d89659176e3
-
SHA512
366a29c509ba5f1f98efe387c474519c725608117ae8ce633a61bfa5eb58606e4719a2f336a4cf9d2f86778cb9b2623dac562fc99991ab904d287f13d4deb36d
-
SSDEEP
1536:MSoaj1hJL1S9t0MIeboal8bCKxo7h0RP0jwHVz30rtroJ:M90hpgz6xGhTjwHN30BEJ
Behavioral task
behavioral1
Sample
NEAS.11f259be929c59c020eec833719bec40_JC.exe
Resource
win7-20231020-en
Behavioral task
behavioral2
Sample
NEAS.11f259be929c59c020eec833719bec40_JC.exe
Resource
win10v2004-20231020-en
Malware Config
Targets
-
-
Target
NEAS.11f259be929c59c020eec833719bec40_JC.exe
-
Size
79KB
-
MD5
11f259be929c59c020eec833719bec40
-
SHA1
9ffbb2e3fae91100c70f509ababf2d4b1171e3e7
-
SHA256
194079f9edceaedfa39a70c673f0256f5a8b5d0e447f37f919999d89659176e3
-
SHA512
366a29c509ba5f1f98efe387c474519c725608117ae8ce633a61bfa5eb58606e4719a2f336a4cf9d2f86778cb9b2623dac562fc99991ab904d287f13d4deb36d
-
SSDEEP
1536:MSoaj1hJL1S9t0MIeboal8bCKxo7h0RP0jwHVz30rtroJ:M90hpgz6xGhTjwHN30BEJ
Score10/10-
Sakula payload
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-