sendsafe | 33721cf8886a5a20f86920d40fcc3bfeba2cfc52fc3d91ca0bf062fda716672f | Triage

Sharing

General

Target

33721cf8886a5a20f86920d40fcc3bfeba2cfc52fc3d91ca0bf062fda716672f
Size

1.8MB
Sample

220524-14nymsdfdq
MD5

75c84a17e6650f8ea78a8bbfaa873216
SHA1

9f18ebf3a8c23bf9f6ee4042d24123992f2e1fc2
SHA256

33721cf8886a5a20f86920d40fcc3bfeba2cfc52fc3d91ca0bf062fda716672f
SHA512

489a9b58b9812a90feedbac004631523657d7f4f86b2998fde84c752b4735d4990b55be36603cc3f517a58fab5eed1c51455673d8e6f96b92e7f592dc572eb01

Score

10^/10

sendsafe unregistered botnet spam

Malware Config

Extracted

Family

sendsafe

Botnet

UNREGISTERED

C2

31.44.184.123:50005

31.44.184.123:50006

Attributes

service_name
Enterprise Mailing Service

Targets

- Target
  
  33721cf8886a5a20f86920d40fcc3bfeba2cfc52fc3d91ca0bf062fda716672f
- Size
  
  1.8MB
- MD5
  
  75c84a17e6650f8ea78a8bbfaa873216
- SHA1
  
  9f18ebf3a8c23bf9f6ee4042d24123992f2e1fc2
- SHA256
  
  33721cf8886a5a20f86920d40fcc3bfeba2cfc52fc3d91ca0bf062fda716672f
- SHA512
  
  489a9b58b9812a90feedbac004631523657d7f4f86b2998fde84c752b4735d4990b55be36603cc3f517a58fab5eed1c51455673d8e6f96b92e7f592dc572eb01
Score

10^/10

sendsafe unregistered botnet spam
- SendSafe
  SendSafe is a notorious spam tool which then turned into spam botnet.
  spam botnet sendsafe
- SendSafe Payload
  botnet
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

sendsafeunregisteredbotnetspam

behavioral2