General

  • Target

    062b83ffb2df925a5c3ff8f80e07b0ea5ad56f7c0851cc6cfe84d242f6522211

  • Size

    61KB

  • MD5

    611ed6ba0837fd298e09d0914dae0e61

  • SHA1

    c6dec6f1c5ad7636ca47da17a1a57ddf07148057

  • SHA256

    062b83ffb2df925a5c3ff8f80e07b0ea5ad56f7c0851cc6cfe84d242f6522211

  • SHA512

    3713d132eff8bad696d79bb51c147311c9f2c2181e0bcca96b74215063df76bdd015a4be1e9640533923df625cddf9e907d91a2b08b33daff4b28538cc647864

  • SSDEEP

    768:9L08ueh7Rc3C/jEB5dhF2BcJJgDfZLDcDTOaLG9tq7gFh7jKAn2Z5I/pGHohL8B:7ZRc3/dh4cJJQfZPcDK9h72AiaUH68

Score
10/10

Malware Config

Extracted

Family

sality

C2

http://89.119.67.154/testo5/

http://kukutrustnet777.info/home.gif

http://kukutrustnet888.info/home.gif

http://kukutrustnet987.info/home.gif

Signatures

  • Sality family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

Files

  • 062b83ffb2df925a5c3ff8f80e07b0ea5ad56f7c0851cc6cfe84d242f6522211
    .exe windows x86


    Headers

    Sections

  • out.upx
    .exe windows x86


    Headers

    Sections