sendsafe | 4ba9c14e8123fd90208e8d4abfba407aa1832055acc64451c120d17d179b6af3 | Triage

Submit
Reports

Overview

overview

Static

static

4ba9c14e81...f3.exe

windows7_x64

4ba9c14e81...f3.exe

windows10-2004_x64

Sharing

General

Target

4ba9c14e8123fd90208e8d4abfba407aa1832055acc64451c120d17d179b6af3
Size

2.6MB
Sample

220712-k5999sece2
MD5

88aaabfa7462cf22c521309a75c8b077
SHA1

983a0b0f77c80f0deb3771377041d9f070fa66c1
SHA256

4ba9c14e8123fd90208e8d4abfba407aa1832055acc64451c120d17d179b6af3
SHA512

de7017ef3c09c2b08d7e1752d5aeb68c3fc6bf3e9bd839998ec82e9e0c6bf99665902a5fb19960fb1ef3098229214b2310d2ea0dfd3e1d4f6904d6fc6d2b17fc

Score

10^/10

sendsafe unregistered botnet spam

Static task

static1

Behavioral task

behavioral1

Sample

4ba9c14e8123fd90208e8d4abfba407aa1832055acc64451c120d17d179b6af3.exe

Resource

win7-20220414-en

sendsafe unregistered botnet spam

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

4ba9c14e8123fd90208e8d4abfba407aa1832055acc64451c120d17d179b6af3.exe

Resource

win10v2004-20220414-en

sendsafe unregistered botnet spam

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

sendsafe

Botnet

UNREGISTERED

C2

91.220.131.68:50005

91.220.131.68:50006

Attributes

service_name
Enterprise Mailing Service

Targets

- Target
  
  4ba9c14e8123fd90208e8d4abfba407aa1832055acc64451c120d17d179b6af3
- Size
  
  2.6MB
- MD5
  
  88aaabfa7462cf22c521309a75c8b077
- SHA1
  
  983a0b0f77c80f0deb3771377041d9f070fa66c1
- SHA256
  
  4ba9c14e8123fd90208e8d4abfba407aa1832055acc64451c120d17d179b6af3
- SHA512
  
  de7017ef3c09c2b08d7e1752d5aeb68c3fc6bf3e9bd839998ec82e9e0c6bf99665902a5fb19960fb1ef3098229214b2310d2ea0dfd3e1d4f6904d6fc6d2b17fc
Score

10^/10

sendsafe unregistered botnet spam
- SendSafe
  SendSafe is a notorious spam tool which then turned into spam botnet.
  spam botnet sendsafe
- SendSafe payload
  botnet
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

sendsafeunregisteredbotnetspam

behavioral2

sendsafeunregisteredbotnetspam

© 2018-2024

Terms | Privacy