General

  • Target

    09caf9f33dbfc9c442604263078ed0c32723973c5aa2ae5ce4da9538600824ed

  • Size

    238KB

  • Sample

    240227-rwxq5sbg7t

  • MD5

    be950881b8206736f25a622efe2bc7f2

  • SHA1

    85ff9b0a11c0b56591cf6f6e13f40b7ab4a158f8

  • SHA256

    09caf9f33dbfc9c442604263078ed0c32723973c5aa2ae5ce4da9538600824ed

  • SHA512

    3e0653c26918b15f0b98f61e4b508079e809a8b3e3d999c17d9f07f71f2a8a0f8e96c22cbb37b55720276e5d94e8c6d44bc151192ecacb34f3f379374732384f

  • SSDEEP

    3072:qQPidj5B53/EeaZL8Z0BFri9WSfWJVVqH9B+QW6dQ5RidzKIfGY/9LzMTB3ZYwNp:5eaCSgfuqdB+W46P5IVoYQcjB

Score
10/10

Malware Config

Extracted

Family

sality

C2

http://89.119.67.154/testo5/

http://kukutrustnet777.info/home.gif

http://kukutrustnet888.info/home.gif

http://kukutrustnet987.info/home.gif

Targets

    • Target

      09caf9f33dbfc9c442604263078ed0c32723973c5aa2ae5ce4da9538600824ed

    • Size

      238KB

    • MD5

      be950881b8206736f25a622efe2bc7f2

    • SHA1

      85ff9b0a11c0b56591cf6f6e13f40b7ab4a158f8

    • SHA256

      09caf9f33dbfc9c442604263078ed0c32723973c5aa2ae5ce4da9538600824ed

    • SHA512

      3e0653c26918b15f0b98f61e4b508079e809a8b3e3d999c17d9f07f71f2a8a0f8e96c22cbb37b55720276e5d94e8c6d44bc151192ecacb34f3f379374732384f

    • SSDEEP

      3072:qQPidj5B53/EeaZL8Z0BFri9WSfWJVVqH9B+QW6dQ5RidzKIfGY/9LzMTB3ZYwNp:5eaCSgfuqdB+W46P5IVoYQcjB

    Score
    10/10
    • Sality

      Sality is backdoor written in C++, first discovered in 2003.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks