sendsafe | ece78097b518756e973a2183e2c5075f1c1133b6abaf1d34b5dec39a6285f358 | Triage

Submit
Reports

Overview

overview

Static

static

ece78097b5...58.exe

windows7_x64

ece78097b5...58.exe

windows10-2004_x64

Sharing

General

Target

ece78097b518756e973a2183e2c5075f1c1133b6abaf1d34b5dec39a6285f358
Size

1.7MB
Sample

220319-nvgfzshag2
MD5

8ad1d303eb8cd37ccd68916bb007cc8a
SHA1

db4f8e16d7c1fa6c9a2aa92bb8be72e7bd7db000
SHA256

ece78097b518756e973a2183e2c5075f1c1133b6abaf1d34b5dec39a6285f358
SHA512

dd6affd15b225886e9abf0d1d03978c0b8d856a387992cdce293a7b3d521574fd792b6321740e0c3b499fcacb6d0d67d33b1b46044b0a3e3b036d86de8f98e60

Score

10^/10

sendsafe unregistered botnet spam

Static task

static1

Behavioral task

behavioral1

Sample

ece78097b518756e973a2183e2c5075f1c1133b6abaf1d34b5dec39a6285f358.exe

Resource

win7-20220311-en

sendsafe unregistered botnet spam

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ece78097b518756e973a2183e2c5075f1c1133b6abaf1d34b5dec39a6285f358.exe

Resource

win10v2004-20220310-en

sendsafe unregistered botnet spam

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

sendsafe

Botnet

UNREGISTERED

C2

195.2.240.119:50099

195.2.240.119:50100

Attributes

service_name
Enterprise Mailing Service

Targets

- Target
  
  ece78097b518756e973a2183e2c5075f1c1133b6abaf1d34b5dec39a6285f358
- Size
  
  1.7MB
- MD5
  
  8ad1d303eb8cd37ccd68916bb007cc8a
- SHA1
  
  db4f8e16d7c1fa6c9a2aa92bb8be72e7bd7db000
- SHA256
  
  ece78097b518756e973a2183e2c5075f1c1133b6abaf1d34b5dec39a6285f358
- SHA512
  
  dd6affd15b225886e9abf0d1d03978c0b8d856a387992cdce293a7b3d521574fd792b6321740e0c3b499fcacb6d0d67d33b1b46044b0a3e3b036d86de8f98e60
Score

10^/10

sendsafe unregistered botnet spam
- SendSafe
  SendSafe is a notorious spam tool which then turned into spam botnet.
  spam botnet sendsafe
- SendSafe Payload
  botnet
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

sendsafeunregisteredbotnetspam

behavioral2

sendsafeunregisteredbotnetspam

© 2018-2024

Terms | Privacy