General

  • Target

    0e2da2f1b0926573adfb873157b17ae41986892aeabe3e5190f6eb24a7ce3cfe

  • Size

    85KB

  • MD5

    80144ca91e81b7bfb938b39f02db0ba0

  • SHA1

    6b5d9de053a22d50e406bb6ecb5db31f04959165

  • SHA256

    0e2da2f1b0926573adfb873157b17ae41986892aeabe3e5190f6eb24a7ce3cfe

  • SHA512

    f3af556c1723df1e0a78de979b7bdf6c83befb2c5bd94769c2f42616ff29ae47ce3d9b978f6a32f3ee834c49503813ee21286bbfb99b999792b2683e9035e119

  • SSDEEP

    1536:yU8cO7u2NbvdOc8VKUaOdNdRzMeNRnfaB9Cb2KSkeGefacdy5:yU5UNZLKzpMWw9MeI

Score
10/10

Malware Config

Extracted

Family

sality

C2

http://89.119.67.154/testo5/

http://kukutrustnet777.info/home.gif

http://kukutrustnet888.info/home.gif

http://kukutrustnet987.info/home.gif

http://www.klkjwre9fqwieluoi.info/

http://kukutrustnet777888.info/

Signatures

  • Sality family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

Files

  • 0e2da2f1b0926573adfb873157b17ae41986892aeabe3e5190f6eb24a7ce3cfe
    .exe windows x86


    Headers

    Sections

  • out.upx
    .exe windows x86


    Headers

    Sections