Sality

Description

(Cylance) The Sality virus infects local executables, removable storage, and remotely shared drives. It creates a peer-to-peer botnet which facilitates the downloading and execution of other malware. Sality can perform malicious code injection and modify its entry point to force code execution. This malware remains viable by adopting the successful strategies of other threats, implementing techniques like rootkit/backdoor capability, keylogging, and worm-like propagation.

Names

Name
Sality
Sector
Kuku
SalLoad
Kookoo
SaliCode
Kukacka

Type

Botnet
Worm
Downloader
Loader

Information

https://threatvector.cylance.com/en_us/home/cylance-vs-sality-malware.html
https://www.botconf.eu/wp-content/uploads/2015/12/OK-P18-Kleissner-Sality.pdf
https://en.wikipedia.org/wiki/Sality

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.sality

Alienvault Otx

https://otx.alienvault.com/browse/pulses?q=tag:Sality

Other Information

Uuid

ccf23a1f-eec2-465a-89a8-fc38dfbfeea8

Last Card Change

2020-05-24

Threat Intelligence Garden

Explorer

Sality

Sality

Description

Names

Category

Type

Information

Malpedia

Alienvault Otx

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks