sendsafe | cecbb3cbe018dc3419300d5b350cdfbbb78adc3fb4d97e6738273c45c36bbf0c | Triage

Submit
Reports

Overview

overview

Static

static

cecbb3cbe0...0c.exe

windows7_x64

cecbb3cbe0...0c.exe

windows10_x64

Sharing

General

Target

cecbb3cbe018dc3419300d5b350cdfbbb78adc3fb4d97e6738273c45c36bbf0c
Size

1.8MB
Sample

211029-a5gb3shbcp
MD5

6ce7ffaf76ea85421e115392ad7c7ba9
SHA1

23c4bf77d07bea66a11e0d2cdf1b19034f718fd4
SHA256

cecbb3cbe018dc3419300d5b350cdfbbb78adc3fb4d97e6738273c45c36bbf0c
SHA512

039c75fd6cda94a5f467be95a7ef093197b3f56eff53590a0edee6d08a008f892132f49746f4623554bdbe85390a47f445eff822e9cd5e90b29753b1e22fe5b4

Score

10^/10

sendsafe unregistered botnet spam

Static task

static1

Behavioral task

behavioral1

Sample

cecbb3cbe018dc3419300d5b350cdfbbb78adc3fb4d97e6738273c45c36bbf0c.exe

Resource

win7-en-20210920

sendsafe unregistered botnet spam

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

cecbb3cbe018dc3419300d5b350cdfbbb78adc3fb4d97e6738273c45c36bbf0c.exe

Resource

win10-en-20211014

sendsafe unregistered botnet spam

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

sendsafe

Botnet

UNREGISTERED

C2

31.44.184.119:50073

31.44.184.119:50074

Attributes

service_name
Enterprise Mailing Service

Targets

- Target
  
  cecbb3cbe018dc3419300d5b350cdfbbb78adc3fb4d97e6738273c45c36bbf0c
- Size
  
  1.8MB
- MD5
  
  6ce7ffaf76ea85421e115392ad7c7ba9
- SHA1
  
  23c4bf77d07bea66a11e0d2cdf1b19034f718fd4
- SHA256
  
  cecbb3cbe018dc3419300d5b350cdfbbb78adc3fb4d97e6738273c45c36bbf0c
- SHA512
  
  039c75fd6cda94a5f467be95a7ef093197b3f56eff53590a0edee6d08a008f892132f49746f4623554bdbe85390a47f445eff822e9cd5e90b29753b1e22fe5b4
Score

10^/10

sendsafe unregistered botnet spam
- SendSafe
  SendSafe is a notorious spam tool which then turned into spam botnet.
  spam botnet sendsafe
- SendSafe Payload
  botnet
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

sendsafeunregisteredbotnetspam

behavioral2

sendsafeunregisteredbotnetspam

© 2018-2024

Terms | Privacy