sendsafe | 931e5e524aa50a86a2d3178e0c909fce879074a0e8f8aaba82dfec58a9612f3a | Triage

Submit
Reports

Overview

overview

Static

static

931e5e524a...3a.exe

windows7-x64

931e5e524a...3a.exe

windows10-2004-x64

Sharing

General

Target

931e5e524aa50a86a2d3178e0c909fce879074a0e8f8aaba82dfec58a9612f3a
Size

1.8MB
Sample

230129-txmcxadf47
MD5

6c922fd7fac5695618fb4484db6f079c
SHA1

c4a1f058a2ae6e50de28420fc082e76962ca1f11
SHA256

931e5e524aa50a86a2d3178e0c909fce879074a0e8f8aaba82dfec58a9612f3a
SHA512

f7422d23cb590bae79c875d40ec8c3ded498fa1213343e35dbe377859d1257053e16ddfc0cd487bf4f48cc5846a6b33530613dd0b275fcf8ab106ecdb7968ea0
SSDEEP

49152:lva5HQ6qsKtUrswWSbxSiYZjhtxwsJQyb:lwHQ6ytlw9dSiYJhXw2

Score

10^/10

sendsafe unregistered botnet spam

Static task

static1

Behavioral task

behavioral1

Sample

931e5e524aa50a86a2d3178e0c909fce879074a0e8f8aaba82dfec58a9612f3a.exe

Resource

win7-20221111-en

sendsafe unregistered botnet spam

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

931e5e524aa50a86a2d3178e0c909fce879074a0e8f8aaba82dfec58a9612f3a.exe

Resource

win10v2004-20221111-en

sendsafe unregistered botnet spam

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

sendsafe

Botnet

UNREGISTERED

C2

31.44.184.117:50015

31.44.184.117:50016

Attributes

service_name
Enterprise Mailing Service

Targets

- Target
  
  931e5e524aa50a86a2d3178e0c909fce879074a0e8f8aaba82dfec58a9612f3a
- Size
  
  1.8MB
- MD5
  
  6c922fd7fac5695618fb4484db6f079c
- SHA1
  
  c4a1f058a2ae6e50de28420fc082e76962ca1f11
- SHA256
  
  931e5e524aa50a86a2d3178e0c909fce879074a0e8f8aaba82dfec58a9612f3a
- SHA512
  
  f7422d23cb590bae79c875d40ec8c3ded498fa1213343e35dbe377859d1257053e16ddfc0cd487bf4f48cc5846a6b33530613dd0b275fcf8ab106ecdb7968ea0
- SSDEEP
  
  49152:lva5HQ6qsKtUrswWSbxSiYZjhtxwsJQyb:lwHQ6ytlw9dSiYJhXw2
Score

10^/10

sendsafe unregistered botnet spam
- SendSafe
  SendSafe is a notorious spam tool which then turned into spam botnet.
  spam botnet sendsafe
- SendSafe payload
  botnet
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

sendsafeunregisteredbotnetspam

behavioral2

sendsafeunregisteredbotnetspam

© 2018-2024

Terms | Privacy