Overview

overview

10

Static

static

1c8cc12770...f1.exe

windows7-x64

3

1c8cc12770...f1.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1c8cc127703da141cc535eda44cd4cde65b2d4ec746bd490b266f90495fb23f1

  • Size

    212KB

  • Sample

    221004-fmc5ladba9

  • MD5

    598053112946907c2bb211216e911329

  • SHA1

    f6469973184c9260fac1267235dd69191975b684

  • SHA256

    1c8cc127703da141cc535eda44cd4cde65b2d4ec746bd490b266f90495fb23f1

  • SHA512

    c3e43bee1088e796a7865e21de35c988841de21beb6a7aee97f7233a6fd543d9e51cc4c10dd8dd661f2612b3e6ed6888a7d36091757d9cdad02944291e456490

  • SSDEEP

    6144:J9kb5a2i+hUqJJFZA3cYyhfaMRDf3HEvm:JeI2i+hUqHE3cYMRDPEvm

Score
10/10
salitybackdoorupx

Malware Config

Extracted

Family

sality

C2

http://89.119.67.154/testo5/

http://kukutrustnet777.info/home.gif

http://kukutrustnet888.info/home.gif

http://kukutrustnet987.info/home.gif

Targets

    • Target

      1c8cc127703da141cc535eda44cd4cde65b2d4ec746bd490b266f90495fb23f1

    • Size

      212KB

    • MD5

      598053112946907c2bb211216e911329

    • SHA1

      f6469973184c9260fac1267235dd69191975b684

    • SHA256

      1c8cc127703da141cc535eda44cd4cde65b2d4ec746bd490b266f90495fb23f1

    • SHA512

      c3e43bee1088e796a7865e21de35c988841de21beb6a7aee97f7233a6fd543d9e51cc4c10dd8dd661f2612b3e6ed6888a7d36091757d9cdad02944291e456490

    • SSDEEP

      6144:J9kb5a2i+hUqJJFZA3cYyhfaMRDf3HEvm:JeI2i+hUqHE3cYMRDPEvm

    Score
    10/10
    salitybackdoorupx

    • Sality

      Sality is backdoor written in C++, first discovered in 2003.

      backdoorsality

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks