Sality
Sality is a polymorphic PE file infector active since 2003. P2P botnet, AV killing, spam/DDoS/cryptomining. Kernel driver security bypass.
Threat Profile
Type
Other
Programming LanguageC++
C2 ProtocolP2P
First Seen2003
Targets
Kuresel Windows
Purpose / Capabilities
- PE File Infector
No C2 servers have been identified for this family yet.
Research Reports (1)
Sality Virüs -- 241KB, Dosya Bulaşıcısı, P2P Botnet, AV Kaçınma | Yüksek
Sality 241KB dosya enfektörü. P2P botnet. AV kaçınma. Polimorfik PE enfeksiyonu.
Read Report →