General

  • Target

    588930b4be75b2abbd56f65ce4f48ef2b0753c4a2aed6f1cf62da088342cfe65

  • Size

    232KB

  • Sample

    240221-qtgrgafh7x

  • MD5

    584a31c739db0117c6b7d2e0bedc2708

  • SHA1

    e830ad757408daf724f0fef02c31cf1021e166d9

  • SHA256

    588930b4be75b2abbd56f65ce4f48ef2b0753c4a2aed6f1cf62da088342cfe65

  • SHA512

    2b3ceb9e5be26b49d8c0c01b8c6bbe10df980060976aa5b8b3ab68b13793c98199e41af8778290b7f26b786ff5bbf5b6bf2fd926cac3afe2624763d5c75c2ece

  • SSDEEP

    3072:AwzvOYRy5YP/aKavT/DvbEvK9aobNI2B+hlsfni3YGByThXKBZkZN4GhQ2eRZh+z:HyiP/aK2h9H/B+rPsMtW3cj+

Score
10/10

Malware Config

Extracted

Family

sality

C2

http://89.119.67.154/testo5/

http://kukutrustnet777.info/home.gif

http://kukutrustnet888.info/home.gif

http://kukutrustnet987.info/home.gif

Targets

    • Target

      588930b4be75b2abbd56f65ce4f48ef2b0753c4a2aed6f1cf62da088342cfe65

    • Size

      232KB

    • MD5

      584a31c739db0117c6b7d2e0bedc2708

    • SHA1

      e830ad757408daf724f0fef02c31cf1021e166d9

    • SHA256

      588930b4be75b2abbd56f65ce4f48ef2b0753c4a2aed6f1cf62da088342cfe65

    • SHA512

      2b3ceb9e5be26b49d8c0c01b8c6bbe10df980060976aa5b8b3ab68b13793c98199e41af8778290b7f26b786ff5bbf5b6bf2fd926cac3afe2624763d5c75c2ece

    • SSDEEP

      3072:AwzvOYRy5YP/aKavT/DvbEvK9aobNI2B+hlsfni3YGByThXKBZkZN4GhQ2eRZh+z:HyiP/aK2h9H/B+rPsMtW3cj+

    Score
    10/10
    • Sality

      Sality is backdoor written in C++, first discovered in 2003.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks