sality | 7890b52b0a3d5424e0b637d301eb3d4e36b8e4b749212a69fee5a875dea99b90 | Triage

Submit
Reports

Overview

overview

Static

static

7890b52b0a...90.exe

windows7-x64

3

7890b52b0a...90.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

7890b52b0a3d5424e0b637d301eb3d4e36b8e4b749212a69fee5a875dea99b90
Size

667KB
Sample

221011-1zngbagec6
MD5

767f4ed53b5be00c42ee05fc1f606990
SHA1

2a3d1e339f254251a4d8ad9e6be125258fb10c46
SHA256

7890b52b0a3d5424e0b637d301eb3d4e36b8e4b749212a69fee5a875dea99b90
SHA512

f457d3474fe53f7cca5407a2fd8b99664289d9e850adc2513c48c02307036a3bb14a9950e68934896fccefca793448f8859a10802169b02c0c80870a6d9608af
SSDEEP

12288:n+7w7UaRt9A2vru+OddjDQ+w2Dr7pE5mKD+TjWj/+zm7cEiT/3IWVIvrxQcVuo:n+7w7UaRt9ODdDr7pE1fD+Kv5

Score

10^/10

sality backdoor upx

Static task

static1

Behavioral task

behavioral1

Sample

7890b52b0a3d5424e0b637d301eb3d4e36b8e4b749212a69fee5a875dea99b90.exe

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

7890b52b0a3d5424e0b637d301eb3d4e36b8e4b749212a69fee5a875dea99b90.exe

Resource

win10v2004-20220812-en

sality backdoor upx

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

sality

C2

http://89.119.67.154/testo5/

http://kukutrustnet777.info/home.gif

http://kukutrustnet888.info/home.gif

http://kukutrustnet987.info/home.gif

Targets

- Target
  
  7890b52b0a3d5424e0b637d301eb3d4e36b8e4b749212a69fee5a875dea99b90
- Size
  
  667KB
- MD5
  
  767f4ed53b5be00c42ee05fc1f606990
- SHA1
  
  2a3d1e339f254251a4d8ad9e6be125258fb10c46
- SHA256
  
  7890b52b0a3d5424e0b637d301eb3d4e36b8e4b749212a69fee5a875dea99b90
- SHA512
  
  f457d3474fe53f7cca5407a2fd8b99664289d9e850adc2513c48c02307036a3bb14a9950e68934896fccefca793448f8859a10802169b02c0c80870a6d9608af
- SSDEEP
  
  12288:n+7w7UaRt9A2vru+OddjDQ+w2Dr7pE5mKD+TjWj/+zm7cEiT/3IWVIvrxQcVuo:n+7w7UaRt9ODdDr7pE1fD+Kv5
Score

10^/10

sality backdoor upx
- Sality
  Sality is backdoor written in C++, first discovered in 2003.
  backdoor sality
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

salitybackdoorupx

© 2018-2025

Terms | Privacy