General

  • Target

    9acf0c1401430ca6eed4594eb8280c3245b522b86804ec16e7d8a4ff1b680f2c

  • Size

    4.5MB

  • Sample

    240220-b1g89ahd72

  • MD5

    42d40b5507171214f8716718823811fc

  • SHA1

    08478537124f8d72457e34a9f15d9b501f336766

  • SHA256

    9acf0c1401430ca6eed4594eb8280c3245b522b86804ec16e7d8a4ff1b680f2c

  • SHA512

    f010d8a68a964874db13e9aff8ef4d71b5250fd07baea6312c0887bebec0839e8bb509b6653d458bf657f5a8f2d5cb42e5ea52aa1b5f5b31b499e8ec394693e9

  • SSDEEP

    6144:7POpcRdeKije8gorQhlTqeJozNfVRzfElis:7PheKUrQhlT3ohfVRAs

Score
10/10

Malware Config

Extracted

Family

sality

C2

http://89.119.67.154/testo5/

http://kukutrustnet777.info/home.gif

http://kukutrustnet888.info/home.gif

http://kukutrustnet987.info/home.gif

Targets

    • Target

      9acf0c1401430ca6eed4594eb8280c3245b522b86804ec16e7d8a4ff1b680f2c

    • Size

      4.5MB

    • MD5

      42d40b5507171214f8716718823811fc

    • SHA1

      08478537124f8d72457e34a9f15d9b501f336766

    • SHA256

      9acf0c1401430ca6eed4594eb8280c3245b522b86804ec16e7d8a4ff1b680f2c

    • SHA512

      f010d8a68a964874db13e9aff8ef4d71b5250fd07baea6312c0887bebec0839e8bb509b6653d458bf657f5a8f2d5cb42e5ea52aa1b5f5b31b499e8ec394693e9

    • SSDEEP

      6144:7POpcRdeKije8gorQhlTqeJozNfVRzfElis:7PheKUrQhlT3ohfVRAs

    Score
    10/10
    • Sality

      Sality is backdoor written in C++, first discovered in 2003.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks