Overview

overview

10

Static

static

3

9e243cdc09...31.exe

windows7-x64

10

9e243cdc09...31.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9e243cdc09a56350f3c7646cb5150d00d99365669568d4327e85d7d4a0e69a31

  • Size

    108KB

  • Sample

    241216-bn479aykak

  • MD5

    7d4003121fdc55f9e79273dc6291c615

  • SHA1

    6c9d06fe9f0ed30463a33996209aa3eccc9f2e51

  • SHA256

    9e243cdc09a56350f3c7646cb5150d00d99365669568d4327e85d7d4a0e69a31

  • SHA512

    5c6e9660b0a7d247e60f60495a435ed6e7b7d1d0ae76f747efa5f07b5db575cdc9ec38d200e50f82e0290b81a5b36f6ef5c99aca9aa73cf4542cea85b9391033

  • SSDEEP

    3072:ZSDADeak7dJHB/Apy0jpSWqU8i6AM7rHVZ95d4OS0iI:ZSsQLH5ApXcW6AM7rHn9bCI

Score
10/10
salitybackdoordiscoveryupx

Malware Config

Extracted

Family

sality

C2

http://89.119.67.154/testo5/

http://kukutrustnet777.info/home.gif

http://kukutrustnet888.info/home.gif

http://kukutrustnet987.info/home.gif

http://www.klkjwre9fqwieluoi.info/

http://kukutrustnet777888.info/

Targets

    • Target

      9e243cdc09a56350f3c7646cb5150d00d99365669568d4327e85d7d4a0e69a31

    • Size

      108KB

    • MD5

      7d4003121fdc55f9e79273dc6291c615

    • SHA1

      6c9d06fe9f0ed30463a33996209aa3eccc9f2e51

    • SHA256

      9e243cdc09a56350f3c7646cb5150d00d99365669568d4327e85d7d4a0e69a31

    • SHA512

      5c6e9660b0a7d247e60f60495a435ed6e7b7d1d0ae76f747efa5f07b5db575cdc9ec38d200e50f82e0290b81a5b36f6ef5c99aca9aa73cf4542cea85b9391033

    • SSDEEP

      3072:ZSDADeak7dJHB/Apy0jpSWqU8i6AM7rHVZ95d4OS0iI:ZSsQLH5ApXcW6AM7rHn9bCI

    Score
    10/10
    salitybackdoorupxdiscovery

    • Sality

      Sality is backdoor written in C++, first discovered in 2003.

      backdoorsality

    • Sality family

      sality

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks