amadey | 12f0ee4708ad0a8c12a7f36435d7dc09e4213bc7c31315686b0c7f76ed233463 | Triage

Submit
Reports

Overview

overview

Static

static

12f0ee4708...63.exe

windows7_x64

12f0ee4708...63.exe

windows10-2004_x64

Sharing

General

Target

12f0ee4708ad0a8c12a7f36435d7dc09e4213bc7c31315686b0c7f76ed233463
Size

3.0MB
Sample

220708-h9kjasfbgp
MD5

104b76899edfccc27df17b715f03aca8
SHA1

161bbce980ca4c4eb0629c8dd7c2dd22e56390b1
SHA256

12f0ee4708ad0a8c12a7f36435d7dc09e4213bc7c31315686b0c7f76ed233463
SHA512

4114b943a19d6cbd789fca5f5a566b1d664d8e03cd52f79859c4dca50a68dbfc2cd3be0788759e3158dbc4872d2d1da0cd547fe7d4d9c864efd7f4b2f17fa914

Score

10^/10

amadey themida trojan

Static task

static1

Behavioral task

behavioral1

Sample

12f0ee4708ad0a8c12a7f36435d7dc09e4213bc7c31315686b0c7f76ed233463.exe

Resource

win7-20220414-en

amadey themida trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

12f0ee4708ad0a8c12a7f36435d7dc09e4213bc7c31315686b0c7f76ed233463.exe

Resource

win10v2004-20220414-en

amadey themida trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

amadey

Version

2.08

C2

194.32.77.37/pPpfs3ds3Za/index.php

Targets

- Target
  
  12f0ee4708ad0a8c12a7f36435d7dc09e4213bc7c31315686b0c7f76ed233463
- Size
  
  3.0MB
- MD5
  
  104b76899edfccc27df17b715f03aca8
- SHA1
  
  161bbce980ca4c4eb0629c8dd7c2dd22e56390b1
- SHA256
  
  12f0ee4708ad0a8c12a7f36435d7dc09e4213bc7c31315686b0c7f76ed233463
- SHA512
  
  4114b943a19d6cbd789fca5f5a566b1d664d8e03cd52f79859c4dca50a68dbfc2cd3be0788759e3158dbc4872d2d1da0cd547fe7d4d9c864efd7f4b2f17fa914
Score

10^/10

amadey themida trojan
- Amadey
  Amadey bot is a simple trojan bot primarily used for collecting reconnaissance information.
  trojan amadey
- Themida packer
  Detects Themida, an advanced Windows software protection system.
  themida
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

amadeythemidatrojan

behavioral2

amadeythemidatrojan

© 2018-2024

Terms | Privacy