Overview

overview

10

Static

static

3

0993442a2a...63.exe

windows7-x64

3

0993442a2a...63.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0993442a2a4eaeaa1603fb2f19124e63

  • Size

    182KB

  • Sample

    231224-wfdqjsdeh3

  • MD5

    0993442a2a4eaeaa1603fb2f19124e63

  • SHA1

    78c9d7c49824d726a37158f3c6682fac9fd23d1e

  • SHA256

    06e4adcb18da0f81242b3a919e1537bda6d19b6233547d7035e4e9ae094a97ac

  • SHA512

    85361b77fc808b60ef61b08b71afcc5994ef03921ed0e4fa6a2f43a9b2981ab10ec58ca7420442bf8a3257a8ff98a3c9af5d1cd237ea32cfdf02169f088ac47d

  • SSDEEP

    3072:nN7vRucyvYSbyRdKILOQvZNTJGkq+ROBJDukRN+vW9W4jqC:N7Zoti1hJhpSbRN+vkW4jH

Score
10/10
salitybackdoorupx

Malware Config

Extracted

Family

sality

C2

http://89.119.67.154/testo5/

http://kukutrustnet777.info/home.gif

http://kukutrustnet888.info/home.gif

http://kukutrustnet987.info/home.gif

Targets

    • Target

      0993442a2a4eaeaa1603fb2f19124e63

    • Size

      182KB

    • MD5

      0993442a2a4eaeaa1603fb2f19124e63

    • SHA1

      78c9d7c49824d726a37158f3c6682fac9fd23d1e

    • SHA256

      06e4adcb18da0f81242b3a919e1537bda6d19b6233547d7035e4e9ae094a97ac

    • SHA512

      85361b77fc808b60ef61b08b71afcc5994ef03921ed0e4fa6a2f43a9b2981ab10ec58ca7420442bf8a3257a8ff98a3c9af5d1cd237ea32cfdf02169f088ac47d

    • SSDEEP

      3072:nN7vRucyvYSbyRdKILOQvZNTJGkq+ROBJDukRN+vW9W4jqC:N7Zoti1hJhpSbRN+vkW4jH

    Score
    10/10
    salitybackdoorupx

    • Sality

      Sality is backdoor written in C++, first discovered in 2003.

      backdoorsality

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks