sality | ebcc0fc0252825206072a9fac8ea36c2edaa20d7efdebc35fdfe4aa6c356d9a8 | Triage

Submit
Reports

Overview

overview

Static

static

3

ebcc0fc025...a8.exe

windows7-x64

3

ebcc0fc025...a8.exe

windows10-2004-x64

Sharing

General

Target

ebcc0fc0252825206072a9fac8ea36c2edaa20d7efdebc35fdfe4aa6c356d9a8
Size

547KB
Sample

241204-em6lga1let
MD5

289785d22ac3530633ca1cba953c9075
SHA1

7c18368ccd4d041c1ae0cf92abfe095ee65883f6
SHA256

ebcc0fc0252825206072a9fac8ea36c2edaa20d7efdebc35fdfe4aa6c356d9a8
SHA512

ed70954d2e91d184fa97a6a25e454ee3d4d1afe524944197f205b6911173020af86f503f1fdfc673f0d2bbc974e1eba3ea44ede9c5a79798c785155e61bb8f4f
SSDEEP

12288:V8rdnBlu0T855BfOr9cxv5swHW5AnlxJjWbDdwS/GahTZy+Pf5Tw2khhHIaxQA:VqZuqc5Er2xv5swZnl3jWBTZVf5Twthl

Score

10^/10

sality backdoor discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ebcc0fc0252825206072a9fac8ea36c2edaa20d7efdebc35fdfe4aa6c356d9a8.exe

Resource

win7-20240708-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

ebcc0fc0252825206072a9fac8ea36c2edaa20d7efdebc35fdfe4aa6c356d9a8.exe

Resource

win10v2004-20241007-en

sality backdoor discovery upx

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  ebcc0fc0252825206072a9fac8ea36c2edaa20d7efdebc35fdfe4aa6c356d9a8
- Size
  
  547KB
- MD5
  
  289785d22ac3530633ca1cba953c9075
- SHA1
  
  7c18368ccd4d041c1ae0cf92abfe095ee65883f6
- SHA256
  
  ebcc0fc0252825206072a9fac8ea36c2edaa20d7efdebc35fdfe4aa6c356d9a8
- SHA512
  
  ed70954d2e91d184fa97a6a25e454ee3d4d1afe524944197f205b6911173020af86f503f1fdfc673f0d2bbc974e1eba3ea44ede9c5a79798c785155e61bb8f4f
- SSDEEP
  
  12288:V8rdnBlu0T855BfOr9cxv5swHW5AnlxJjWbDdwS/GahTZy+Pf5Tw2khhHIaxQA:VqZuqc5Er2xv5swZnl3jWBTZVf5Twthl
Score

10^/10

discovery sality backdoor upx
- Sality
  Sality is backdoor written in C++, first discovered in 2003.
  backdoor sality
- Sality family
  sality
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

salitybackdoordiscoveryupx

© 2018-2025

Terms | Privacy