General

  • Target

    e8d781854210609d636b8930300d0357d634a6a30e805a70658420b92a294d5e

  • Size

    446KB

  • Sample

    240220-r46c9ahh3x

  • MD5

    a3394c6932dd289f11e5c4fe0c9b7392

  • SHA1

    569961e1f985a25bf729b11d3e6a19a739df67a7

  • SHA256

    e8d781854210609d636b8930300d0357d634a6a30e805a70658420b92a294d5e

  • SHA512

    1ae3a14da93aac4cc0136a51c400d02fc4244937ab61cc309be8c3e3f59d3f8e23b3b23e9d15c96bfa41d8712daee5746c270e77b5564c1b1810dbc5c8b40fe5

  • SSDEEP

    12288:9heEYDCf1iMksDweD1jHYwvtmcLwoai1:9hyIknepTOe

Score
10/10

Malware Config

Extracted

Family

sality

C2

http://89.119.67.154/testo5/

http://kukutrustnet777.info/home.gif

http://kukutrustnet888.info/home.gif

http://kukutrustnet987.info/home.gif

Targets

    • Target

      e8d781854210609d636b8930300d0357d634a6a30e805a70658420b92a294d5e

    • Size

      446KB

    • MD5

      a3394c6932dd289f11e5c4fe0c9b7392

    • SHA1

      569961e1f985a25bf729b11d3e6a19a739df67a7

    • SHA256

      e8d781854210609d636b8930300d0357d634a6a30e805a70658420b92a294d5e

    • SHA512

      1ae3a14da93aac4cc0136a51c400d02fc4244937ab61cc309be8c3e3f59d3f8e23b3b23e9d15c96bfa41d8712daee5746c270e77b5564c1b1810dbc5c8b40fe5

    • SSDEEP

      12288:9heEYDCf1iMksDweD1jHYwvtmcLwoai1:9hyIknepTOe

    Score
    10/10
    • Sality

      Sality is backdoor written in C++, first discovered in 2003.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks