Overview

overview

10

Static

static

79.exe

windows7_x64

10

79.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    79.exe

  • Size

    1.8MB

  • Sample

    211019-vv7fqshbdl

  • MD5

    657ce5ecaa9fa76d02a1a246bd0a585e

  • SHA1

    6215082020db55ed27551ce11e78bee29f6475f2

  • SHA256

    a0c2f11617206b674b728d12b9a6f8e0c16ccaa633e3d21dc051733a65564827

  • SHA512

    4cf4ccb338e22ee8e69c0c50aae44dbb68421f3834796272ca1afa7b7a19cf1d522ebea79b79754e3d066e0b941159be364bb0f2de645c6052cf6f809c9e5810

Score
10/10
sendsafeunregisteredbotnetspam

Malware Config

Extracted

Family

sendsafe

Botnet

UNREGISTERED

C2

31.44.184.79:50071

31.44.184.79:50072
Attributes
  • service_name

    Enterprise Mailing Service

Targets

    • Target

      79.exe

    • Size

      1.8MB

    • MD5

      657ce5ecaa9fa76d02a1a246bd0a585e

    • SHA1

      6215082020db55ed27551ce11e78bee29f6475f2

    • SHA256

      a0c2f11617206b674b728d12b9a6f8e0c16ccaa633e3d21dc051733a65564827

    • SHA512

      4cf4ccb338e22ee8e69c0c50aae44dbb68421f3834796272ca1afa7b7a19cf1d522ebea79b79754e3d066e0b941159be364bb0f2de645c6052cf6f809c9e5810

    Score
    10/10
    sendsafeunregisteredbotnetspam

    • SendSafe

      SendSafe is a notorious spam tool which then turned into spam botnet.

      spambotnetsendsafe

    • SendSafe Payload

      botnet
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks