Sality

Sality is a polymorphic PE file infector active since 2003. P2P botnet, AV killing, spam/DDoS/cryptomining. Kernel driver security bypass.

Threat Profile
Type Other
Programming LanguageC++
C2 ProtocolP2P
First Seen2003
Targets Kuresel Windows
Purpose / Capabilities
  • PE File Infector
No C2 servers have been identified for this family yet.

Research Reports (1)

High

Sality Virüs -- 241KB, Dosya Bulaşıcısı, P2P Botnet, AV Kaçınma | Yüksek

Sality 241KB dosya enfektörü. P2P botnet. AV kaçınma. Polimorfik PE enfeksiyonu.

Read Report →