sendsafe | b2d3fb5275d039b25527292b1b2814354b2a3e3b2e8acafe02d507a31a66718c | Triage

Submit
Reports

Overview

overview

Static

static

b2d3fb5275...8c.exe

windows7_x64

b2d3fb5275...8c.exe

windows10-2004_x64

Sharing

General

Target

b2d3fb5275d039b25527292b1b2814354b2a3e3b2e8acafe02d507a31a66718c
Size

1.8MB
Sample

220521-m1s7asfhfp
MD5

61130ba71d2bb0f5285e38687960a8c8
SHA1

6ae681aa354d1d18285d2446f56df3eb2f967dbf
SHA256

b2d3fb5275d039b25527292b1b2814354b2a3e3b2e8acafe02d507a31a66718c
SHA512

6a14a0a0befa40a5bd331ae4511e1f3dfebfc93031566e3a6358f1d83d07daa6dc39a874c4fce4ee48c6fc0a36c4b56a6ae9fe4858326502907d460d80554c80

Score

10^/10

sendsafe unregistered botnet spam

Static task

static1

Behavioral task

behavioral1

Sample

b2d3fb5275d039b25527292b1b2814354b2a3e3b2e8acafe02d507a31a66718c.exe

Resource

win7-20220414-en

sendsafe unregistered botnet spam

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

b2d3fb5275d039b25527292b1b2814354b2a3e3b2e8acafe02d507a31a66718c.exe

Resource

win10v2004-20220414-en

sendsafe unregistered botnet spam

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

sendsafe

Botnet

UNREGISTERED

C2

31.44.184.120:50007

31.44.184.120:50008

Attributes

service_name
Enterprise Mailing Service

Targets

- Target
  
  b2d3fb5275d039b25527292b1b2814354b2a3e3b2e8acafe02d507a31a66718c
- Size
  
  1.8MB
- MD5
  
  61130ba71d2bb0f5285e38687960a8c8
- SHA1
  
  6ae681aa354d1d18285d2446f56df3eb2f967dbf
- SHA256
  
  b2d3fb5275d039b25527292b1b2814354b2a3e3b2e8acafe02d507a31a66718c
- SHA512
  
  6a14a0a0befa40a5bd331ae4511e1f3dfebfc93031566e3a6358f1d83d07daa6dc39a874c4fce4ee48c6fc0a36c4b56a6ae9fe4858326502907d460d80554c80
Score

10^/10

sendsafe unregistered botnet spam
- SendSafe
  SendSafe is a notorious spam tool which then turned into spam botnet.
  spam botnet sendsafe
- SendSafe Payload
  botnet
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

sendsafeunregisteredbotnetspam

behavioral2

sendsafeunregisteredbotnetspam

© 2018-2024

Terms | Privacy