General

  • Target

    ee0d9d07f595e2270d8edb7002037550dcacd19854e0584634994736042b7cba

  • Size

    737KB

  • Sample

    240219-zbveaacf6w

  • MD5

    a91505a7bc1d3a2f2482a6492b5cc834

  • SHA1

    21d30fa8ea10940d27022efef4298e24bf3523d1

  • SHA256

    ee0d9d07f595e2270d8edb7002037550dcacd19854e0584634994736042b7cba

  • SHA512

    204cc85dafb1667bd8c06d03ba3fcec36b29f7f4c73579de031bd2e66f5d0e5d2971e675f03b7aa1f9a0340ec390678b8ea8bdbce9c2c3b549c456c80fc22cf0

  • SSDEEP

    12288:FIY4or7IaEUQ2pzyRE5yXBhZyjPl06chgZF/RUm:FINI0mpBsXIjPlXcOZBR

Score
10/10

Malware Config

Extracted

Family

sality

C2

http://89.119.67.154/testo5/

http://kukutrustnet777.info/home.gif

http://kukutrustnet888.info/home.gif

http://kukutrustnet987.info/home.gif

Targets

    • Target

      ee0d9d07f595e2270d8edb7002037550dcacd19854e0584634994736042b7cba

    • Size

      737KB

    • MD5

      a91505a7bc1d3a2f2482a6492b5cc834

    • SHA1

      21d30fa8ea10940d27022efef4298e24bf3523d1

    • SHA256

      ee0d9d07f595e2270d8edb7002037550dcacd19854e0584634994736042b7cba

    • SHA512

      204cc85dafb1667bd8c06d03ba3fcec36b29f7f4c73579de031bd2e66f5d0e5d2971e675f03b7aa1f9a0340ec390678b8ea8bdbce9c2c3b549c456c80fc22cf0

    • SSDEEP

      12288:FIY4or7IaEUQ2pzyRE5yXBhZyjPl06chgZF/RUm:FINI0mpBsXIjPlXcOZBR

    Score
    10/10
    • Sality

      Sality is backdoor written in C++, first discovered in 2003.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks