sendsafe | d579786f0f9d26894e2a96a987acac8101aae2ba609cb20f75896edc6eb05e00 | Triage

Submit
Reports

Overview

overview

Static

static

d579786f0f...00.exe

windows7-x64

d579786f0f...00.exe

windows10-2004-x64

Sharing

General

Target

d579786f0f9d26894e2a96a987acac8101aae2ba609cb20f75896edc6eb05e00
Size

2.1MB
Sample

220725-e2j11seef9
MD5

49de3cafbabd4b2877e2f5d9382b1dc3
SHA1

9672d252fa5c58d99bce7c2b2f424397a65a1757
SHA256

d579786f0f9d26894e2a96a987acac8101aae2ba609cb20f75896edc6eb05e00
SHA512

a50e9f85c3b92ce4dd7deaf384c92e42d6c7f64b4674b202f344af39896b5d8e9e7535c795bec7bfd1012c26680553d03c0077d51f11ae9d6df39f86a58d7d96

Score

10^/10

sendsafe unregistered botnet spam

Static task

static1

Behavioral task

behavioral1

Sample

d579786f0f9d26894e2a96a987acac8101aae2ba609cb20f75896edc6eb05e00.exe

Resource

win7-20220715-en

sendsafe unregistered botnet spam

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

d579786f0f9d26894e2a96a987acac8101aae2ba609cb20f75896edc6eb05e00.exe

Resource

win10v2004-20220722-en

sendsafe unregistered botnet spam

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

sendsafe

Botnet

UNREGISTERED

C2

31.44.184.47:50017

31.44.184.47:50018

Attributes

service_name
Enterprise Mailing Service

Targets

- Target
  
  d579786f0f9d26894e2a96a987acac8101aae2ba609cb20f75896edc6eb05e00
- Size
  
  2.1MB
- MD5
  
  49de3cafbabd4b2877e2f5d9382b1dc3
- SHA1
  
  9672d252fa5c58d99bce7c2b2f424397a65a1757
- SHA256
  
  d579786f0f9d26894e2a96a987acac8101aae2ba609cb20f75896edc6eb05e00
- SHA512
  
  a50e9f85c3b92ce4dd7deaf384c92e42d6c7f64b4674b202f344af39896b5d8e9e7535c795bec7bfd1012c26680553d03c0077d51f11ae9d6df39f86a58d7d96
Score

10^/10

sendsafe unregistered botnet spam
- SendSafe
  SendSafe is a notorious spam tool which then turned into spam botnet.
  spam botnet sendsafe
- SendSafe payload
  botnet
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

sendsafeunregisteredbotnetspam

behavioral2

sendsafeunregisteredbotnetspam

© 2018-2024

Terms | Privacy