Overview

overview

10

Static

static

3

618804306fe03b_JC.exe

windows7-x64

10

618804306fe03b_JC.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    618804306fe03b_JC.exe

  • Size

    3.9MB

  • Sample

    230716-lvtp7sdh78

  • MD5

    618804306fe03b3cdc5a46549269a621

  • SHA1

    6e4ff85f477f8a10a5561c5b354b65ad69b61bb3

  • SHA256

    dafcb3831dad1a6df35c933266719e9b07cbb2d3321b7163fcd8137381bcf623

  • SHA512

    052ed60d6cd52fbb33edddaf8883a251f60fa2fbc4b47d5fd86c4421fa894ee9453d41a5e0aa71447ff6657d569ae847213579d29bf975dff0a5669991351d90

  • SSDEEP

    98304:lTrn46UqYXVrcot6bGZH1zQRhZpRh2ApVTL:pQtiP/n

Score
10/10
salitybackdoorupx

Malware Config

Extracted

Family

sality

C2

http://89.119.67.154/testo5/

http://kukutrustnet777.info/home.gif

http://kukutrustnet888.info/home.gif

http://kukutrustnet987.info/home.gif

Targets

    • Target

      618804306fe03b_JC.exe

    • Size

      3.9MB

    • MD5

      618804306fe03b3cdc5a46549269a621

    • SHA1

      6e4ff85f477f8a10a5561c5b354b65ad69b61bb3

    • SHA256

      dafcb3831dad1a6df35c933266719e9b07cbb2d3321b7163fcd8137381bcf623

    • SHA512

      052ed60d6cd52fbb33edddaf8883a251f60fa2fbc4b47d5fd86c4421fa894ee9453d41a5e0aa71447ff6657d569ae847213579d29bf975dff0a5669991351d90

    • SSDEEP

      98304:lTrn46UqYXVrcot6bGZH1zQRhZpRh2ApVTL:pQtiP/n

    Score
    10/10
    salitybackdoorupx

    • Sality

      Sality is backdoor written in C++, first discovered in 2003.

      backdoorsality

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks