sendsafe | c6bd0d90ba534afe556afe109469c23d73d31ad563fe1629a6c0df2909ee97fb | Triage

Submit
Reports

Overview

overview

Static

static

c6bd0d90ba...fb.exe

windows7-x64

c6bd0d90ba...fb.exe

windows10-2004-x64

Sharing

General

Target

c6bd0d90ba534afe556afe109469c23d73d31ad563fe1629a6c0df2909ee97fb
Size

1.8MB
Sample

220725-dvstxaceg5
MD5

1801b59e8a960de092a3b8a875940a96
SHA1

59e7d03ba78a13c64eb482dbc347aa12184642e5
SHA256

c6bd0d90ba534afe556afe109469c23d73d31ad563fe1629a6c0df2909ee97fb
SHA512

4bf44d36251f6774cf71f8791b00cf60329cc32ff58fdcba78641605283d1b3831a264751d0742e28b2045c366778f0e9b27fafaa630d346574850e3a7f8b979

Score

10^/10

sendsafe unregistered botnet spam

Static task

static1

Behavioral task

behavioral1

Sample

c6bd0d90ba534afe556afe109469c23d73d31ad563fe1629a6c0df2909ee97fb.exe

Resource

win7-20220718-en

sendsafe unregistered botnet spam

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

c6bd0d90ba534afe556afe109469c23d73d31ad563fe1629a6c0df2909ee97fb.exe

Resource

win10v2004-20220721-en

sendsafe unregistered botnet spam

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

sendsafe

Botnet

UNREGISTERED

C2

31.44.184.117:50017

31.44.184.117:50018

Attributes

service_name
Enterprise Mailing Service

Targets

- Target
  
  c6bd0d90ba534afe556afe109469c23d73d31ad563fe1629a6c0df2909ee97fb
- Size
  
  1.8MB
- MD5
  
  1801b59e8a960de092a3b8a875940a96
- SHA1
  
  59e7d03ba78a13c64eb482dbc347aa12184642e5
- SHA256
  
  c6bd0d90ba534afe556afe109469c23d73d31ad563fe1629a6c0df2909ee97fb
- SHA512
  
  4bf44d36251f6774cf71f8791b00cf60329cc32ff58fdcba78641605283d1b3831a264751d0742e28b2045c366778f0e9b27fafaa630d346574850e3a7f8b979
Score

10^/10

sendsafe unregistered botnet spam
- SendSafe
  SendSafe is a notorious spam tool which then turned into spam botnet.
  spam botnet sendsafe
- SendSafe payload
  botnet
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

sendsafeunregisteredbotnetspam

behavioral2

sendsafeunregisteredbotnetspam

© 2018-2024

Terms | Privacy