General

  • Target

    85e64fa7b483f40e69a2284a9c008c60ea5b8c7e6cfec55b5c5dc1971f5f4a05

  • Size

    437KB

  • Sample

    240220-sab3zsae88

  • MD5

    c3bca25ecc0b877eb35b66cda5867f5a

  • SHA1

    b0b73ec9d2757844671eef8de1fd2906041a8c89

  • SHA256

    85e64fa7b483f40e69a2284a9c008c60ea5b8c7e6cfec55b5c5dc1971f5f4a05

  • SHA512

    ed094ff51f9b2f9ba4a93d9fa80b0170f0c7585b6343c659423a54cfca926b90a86bcc6cfbaad43f14b9e241c8183a44daef90f88d368203e07a87301ef425f0

  • SSDEEP

    6144:TUkMWRn4SZRZJgHi26ZRD1eYYeSnuDfYTAOsE2qRYgxh/ZZf3gkOy93w:TUkMWRzMB67xxYrnOQTfRRrZZPRO03

Score
10/10

Malware Config

Extracted

Family

sality

C2

http://89.119.67.154/testo5/

http://kukutrustnet777.info/home.gif

http://kukutrustnet888.info/home.gif

http://kukutrustnet987.info/home.gif

Targets

    • Target

      85e64fa7b483f40e69a2284a9c008c60ea5b8c7e6cfec55b5c5dc1971f5f4a05

    • Size

      437KB

    • MD5

      c3bca25ecc0b877eb35b66cda5867f5a

    • SHA1

      b0b73ec9d2757844671eef8de1fd2906041a8c89

    • SHA256

      85e64fa7b483f40e69a2284a9c008c60ea5b8c7e6cfec55b5c5dc1971f5f4a05

    • SHA512

      ed094ff51f9b2f9ba4a93d9fa80b0170f0c7585b6343c659423a54cfca926b90a86bcc6cfbaad43f14b9e241c8183a44daef90f88d368203e07a87301ef425f0

    • SSDEEP

      6144:TUkMWRn4SZRZJgHi26ZRD1eYYeSnuDfYTAOsE2qRYgxh/ZZf3gkOy93w:TUkMWRzMB67xxYrnOQTfRRrZZPRO03

    Score
    10/10
    • Sality

      Sality is backdoor written in C++, first discovered in 2003.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks