General

  • Target

    53c56b5341d932ec07f6ed5de3f5ba82f8fc58c76847c17809d8a00ac82d8132

  • Size

    1.6MB

  • MD5

    5fecbbdcaae6952a1a747089f50962a5

  • SHA1

    002a9076becf917066d988bc9d14c1c636fb79dc

  • SHA256

    53c56b5341d932ec07f6ed5de3f5ba82f8fc58c76847c17809d8a00ac82d8132

  • SHA512

    62abf9a76bc3dd875ac032f52b4a6af9d28fe452c1771ac710fbafda93af820a43a562505089688aaeacad080140b103d81c930281e04d8ec2870e1bec888ee1

  • SSDEEP

    24576:9+KpP8uA9G9esaFVV+Dq3tZzoCh0uxvBLyx9J5MjRF9vfYCWGa1ZS/DaM2fuqNLJ:N25LDVnOuPBYCLAPBqtAz

Malware Config

Extracted

Family

sendsafe

Botnet

UNREGISTERED

C2

91.220.131.63:50001

91.220.131.63:50002

Attributes
  • service_name

    Enterprise Mailing Service

Signatures

  • SendSafe payload 1 IoCs
  • Sendsafe family

Files

  • 53c56b5341d932ec07f6ed5de3f5ba82f8fc58c76847c17809d8a00ac82d8132
    .exe windows x86

    1b51865cf58b4b4c3b86d75fb87e3353


    Headers

    Imports

    Sections