Overview

overview

10

Static

static

10

b072f399c3...b0.exe

windows7-x64

10

b072f399c3...b0.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    b072f399c385e6720a8fe587875eb861a203deb6d61666602a13fca610b256b0

  • Size

    128KB

  • MD5

    eb5005606e1e364548811e2b110a2fd5

  • SHA1

    be7ae4f713b59ac8eac36500a0d57c0e0a33b9d3

  • SHA256

    b072f399c385e6720a8fe587875eb861a203deb6d61666602a13fca610b256b0

  • SHA512

    ef007b5ebd20d75163603f6c2a1d596b28b3881014c6fbe88290b4a3e876c052a1955f1a52ad9d548ea78393b7b38f8f37a51192a072c883cb20d1d0b3b12c55

  • SSDEEP

    3072:I29DkEGRQixVSjLXt+rl30B77uZwOuz/xo:I29qRfVSndg30BGwBxo

Score
10/10
sakula

Malware Config

Extracted

Family

sakula

C2

www.polarroute.com

Signatures

  • Sakula family
    sakula
  • Sakula payload 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b072f399c385e6720a8fe587875eb861a203deb6d61666602a13fca610b256b0
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections