Overview

overview

10

Static

static

3

c7e087a063...f2.exe

windows7-x64

10

c7e087a063...f2.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    c7e087a0630c94b08bc5210b7761b11b85517fa5f80088c9c5547afe485b29f2

  • Size

    430KB

  • Sample

    231224-a7l1cabhdj

  • MD5

    2a1860f0dfba23a39f7ca397623d97b4

  • SHA1

    547d458e1e93f145a79aa4c9e462eb651469d2a2

  • SHA256

    c7e087a0630c94b08bc5210b7761b11b85517fa5f80088c9c5547afe485b29f2

  • SHA512

    13e464623a70665efcc7d87a87e8668f72ca6c9e9647c4480f7915394d8690f098b842a828056c34717ef2b76bf3221ed080bbfdf788c6620c6ba3f9e5d311c6

  • SSDEEP

    12288:oyIcgCzmJcPnoOobJ5+Bec37vtNdRUwVLj:dgCzmJcPnotfW7jtpUwVLj

Score
10/10
salitybackdoorupx

Malware Config

Extracted

Family

sality

C2

http://89.119.67.154/testo5/

http://kukutrustnet777.info/home.gif

http://kukutrustnet888.info/home.gif

http://kukutrustnet987.info/home.gif

Targets

    • Target

      c7e087a0630c94b08bc5210b7761b11b85517fa5f80088c9c5547afe485b29f2

    • Size

      430KB

    • MD5

      2a1860f0dfba23a39f7ca397623d97b4

    • SHA1

      547d458e1e93f145a79aa4c9e462eb651469d2a2

    • SHA256

      c7e087a0630c94b08bc5210b7761b11b85517fa5f80088c9c5547afe485b29f2

    • SHA512

      13e464623a70665efcc7d87a87e8668f72ca6c9e9647c4480f7915394d8690f098b842a828056c34717ef2b76bf3221ed080bbfdf788c6620c6ba3f9e5d311c6

    • SSDEEP

      12288:oyIcgCzmJcPnoOobJ5+Bec37vtNdRUwVLj:dgCzmJcPnotfW7jtpUwVLj

    Score
    10/10
    salitybackdoorupx

    • Sality

      Sality is backdoor written in C++, first discovered in 2003.

      backdoorsality

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks