sality | 9eeecae962ed48348da1791b3c2a2fa87b9f710560c5d4ce173e317bcb48c34f | Triage

Submit
Reports

Overview

overview

Static

static

3

9eeecae962...fN.exe

windows7-x64

9eeecae962...fN.exe

windows10-2004-x64

Sharing

General

Target

9eeecae962ed48348da1791b3c2a2fa87b9f710560c5d4ce173e317bcb48c34fN.exe
Size

100KB
Sample

241216-madnxswld1
MD5

e17a153b20e5ad0ba33756de46ded0e0
SHA1

63628c5bfc03e131bec29508beb59f44012b260c
SHA256

9eeecae962ed48348da1791b3c2a2fa87b9f710560c5d4ce173e317bcb48c34f
SHA512

427f561a0c70db8677c3366c57a1b98d2d9d055fa5e182495d1062b16eda56ade88d23adb57e0f58a166d611f1234453d5ddb6a0cf272baf34898d8745cccafa
SSDEEP

1536:QpO1Ek93yAgf4hhb8K1DDikizDlHCrHlMqyyZ/b1eioqQgkiW:IkAbfW8YDDikiIrFMqyyZ/5+cW

Score

10^/10

sality backdoor discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

9eeecae962ed48348da1791b3c2a2fa87b9f710560c5d4ce173e317bcb48c34fN.exe

Resource

win7-20240708-en

sality backdoor discovery upx

windows7-x64

4 signatures

120 seconds

Behavioral task

behavioral2

Sample

9eeecae962ed48348da1791b3c2a2fa87b9f710560c5d4ce173e317bcb48c34fN.exe

Resource

win10v2004-20241007-en

sality backdoor discovery upx

windows10-2004-x64

4 signatures

120 seconds

Malware Config

Targets

- Target
  
  9eeecae962ed48348da1791b3c2a2fa87b9f710560c5d4ce173e317bcb48c34fN.exe
- Size
  
  100KB
- MD5
  
  e17a153b20e5ad0ba33756de46ded0e0
- SHA1
  
  63628c5bfc03e131bec29508beb59f44012b260c
- SHA256
  
  9eeecae962ed48348da1791b3c2a2fa87b9f710560c5d4ce173e317bcb48c34f
- SHA512
  
  427f561a0c70db8677c3366c57a1b98d2d9d055fa5e182495d1062b16eda56ade88d23adb57e0f58a166d611f1234453d5ddb6a0cf272baf34898d8745cccafa
- SSDEEP
  
  1536:QpO1Ek93yAgf4hhb8K1DDikizDlHCrHlMqyyZ/b1eioqQgkiW:IkAbfW8YDDikiIrFMqyyZ/5+cW
Score

10^/10

sality backdoor discovery upx
- Sality
  Sality is backdoor written in C++, first discovered in 2003.
  backdoor sality
- Sality family
  sality
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

salitybackdoordiscoveryupx

behavioral2

salitybackdoordiscoveryupx

© 2018-2024

Terms | Privacy