Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

f0d5018f2c...46.exe

windows7-x64

10

f0d5018f2c...46.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f0d5018f2cec5cb2d180da73184a87c7520e023c8742b4d719760ec9643d6c46

  • Size

    1.3MB

  • Sample

    240312-wjw2ashe47

  • MD5

    853ddff4e12a4222714853f79340cea2

  • SHA1

    603bd0d26137803ee29ed21ccea5d845fbbd4d1a

  • SHA256

    f0d5018f2cec5cb2d180da73184a87c7520e023c8742b4d719760ec9643d6c46

  • SHA512

    d248afb3c6c55d85768b4a69e60151a02daf1b0d014ed81c5ce63b5e5168f1c560a0a06492181d001cae5165a53c0f49907605f78ee434315b619b447f0b148d

  • SSDEEP

    24576:V/CxhQi+gdzHd4E7yqPlEM5rvCau8l/b0F/WWBSm7xZEQc2hBjofRxi:podPyUlEIrqau8l/b0Fulm7xZxrkfRM

Score
10/10
salitybackdoorupx

Malware Config

Extracted

Family

sality

C2

http://89.119.67.154/testo5/

http://kukutrustnet777.info/home.gif

http://kukutrustnet888.info/home.gif

http://kukutrustnet987.info/home.gif

Targets

    • Target

      f0d5018f2cec5cb2d180da73184a87c7520e023c8742b4d719760ec9643d6c46

    • Size

      1.3MB

    • MD5

      853ddff4e12a4222714853f79340cea2

    • SHA1

      603bd0d26137803ee29ed21ccea5d845fbbd4d1a

    • SHA256

      f0d5018f2cec5cb2d180da73184a87c7520e023c8742b4d719760ec9643d6c46

    • SHA512

      d248afb3c6c55d85768b4a69e60151a02daf1b0d014ed81c5ce63b5e5168f1c560a0a06492181d001cae5165a53c0f49907605f78ee434315b619b447f0b148d

    • SSDEEP

      24576:V/CxhQi+gdzHd4E7yqPlEM5rvCau8l/b0F/WWBSm7xZEQc2hBjofRxi:podPyUlEIrqau8l/b0Fulm7xZxrkfRM

    Score
    10/10
    salitybackdoorupx

    • Sality

      Sality is backdoor written in C++, first discovered in 2003.

      backdoorsality

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks