A forum for reverse engineering, OS internals and malware analysis 

Virus:Win32/Sality (alias Sector)

Forum for analysis and discussion about malware.

Re: Virus:Win32/Sality

 #18714  by EP_X0FF
 Wed Mar 27, 2013 3:53 am
Various Sality aka Sector in attach.

SHA1
Code: Select all
0ff6437f95502e2841e5f50b873e826b5c3b13de Win32/Sality.R
410b5a8c0c00339ac206ca01fac3196c0ff1ad6f Win32/Sality.gen!AT
4b63f093d0a80acf2b29eaf3769ad8f8006feddf Win32/Sality.AM
5408b6d37e705d75770f993e2fa8539a6f597456 Win32/Sality.AM
83c16e074e149f45eb1c67453f211c4e5f80892a Win32/Sality.AT
8d02e2750700c63769f040b135027cce31202e8a Win32/Sality.G
882991299144a9907afca9bec90e9cbb3fb564f1 Win32/Sality.AU
Attachments
pass: malware
(1.74 MiB) Downloaded 138 times

Re: Virus:Win32/Sality (alias Sector)

 #21226  by Mosh
 Tue Oct 22, 2013 6:12 pm
Three more samples:

SHA1: 7c53f61b753cf7d59a8aaa091af930555852e017
MD5: 2e9f353c64c13306419bd820c2cbb0f3
https://www.virustotal.com/en/file/6fe8 ... /analysis/

SHA1: ee4ddc814d72eb2e7d964fbed04047ca6ef40552
MD5: 8fab66e316af89f39de3b95e3846ec8c
https://www.virustotal.com/en/file/7708 ... /analysis/

SHA1: b5196874ff5ec0712e90a4d8376603555e7844fe
MD5: 8ff29a0c861d02384e7c4bf52250356a
https://www.virustotal.com/en/file/11e1 ... /analysis/
Attachments
infected
(2.05 MiB) Downloaded 88 times
 Return to “Malware”