Overview

overview

10

Static

static

10

3068-14-0x...ry.exe

windows7-x64

1

3068-14-0x...ry.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3068-14-0x0000000000400000-0x0000000002AE4000-memory.dmp

  • Size

    38.9MB

  • Sample

    231127-txp4sshg73

  • MD5

    33e1e853b21d9ec72568afe62f172ef6

  • SHA1

    b6a0705f3bad88f7c79995674816031a81736886

  • SHA256

    0cfd5f058944df38080142a2ad43e457094fdf5e6c5f3d97e47f1cd4e834b21e

  • SHA512

    5fe41f836e0b361ca49726d420303a6632b3454fc9bccdbe835f9b0f5fef7711b39bb846d32a1f02073d2a691dfc435967f7114fa913045ee4337197a43f37cf

  • SSDEEP

    12288:bSIX87D533xNzxb9XdEpxDYsF4m98uH+WycCFWw:S7D533xNzl9N+YODxCFWw

Score
10/10
amadey

Malware Config

Extracted

Family

amadey

Version

4.11

C2

http://shohetrc.com

http://sibcomputer.ru

http://tve-mail.com
Attributes
  • install_dir

    d4dd819322

  • install_file

    Utsysc.exe

  • strings_key

    8419b3024d6f72beef8af6915e592308

  • url_paths

    /forum/index.php

rc4.plain

Targets

    • Target

      3068-14-0x0000000000400000-0x0000000002AE4000-memory.dmp

    • Size

      38.9MB

    • MD5

      33e1e853b21d9ec72568afe62f172ef6

    • SHA1

      b6a0705f3bad88f7c79995674816031a81736886

    • SHA256

      0cfd5f058944df38080142a2ad43e457094fdf5e6c5f3d97e47f1cd4e834b21e

    • SHA512

      5fe41f836e0b361ca49726d420303a6632b3454fc9bccdbe835f9b0f5fef7711b39bb846d32a1f02073d2a691dfc435967f7114fa913045ee4337197a43f37cf

    • SSDEEP

      12288:bSIX87D533xNzxb9XdEpxDYsF4m98uH+WycCFWw:S7D533xNzl9N+YODxCFWw

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks