Overview

overview

10

Static

static

10

2220-3-0x0...ry.exe

windows7-x64

1

2220-3-0x0...ry.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2220-3-0x0000000000400000-0x00000000008B3000-memory.dmp

  • Size

    4.7MB

  • Sample

    231130-y5wzjahc85

  • MD5

    6c5c6e4d12744987bdfc8977e4f03247

  • SHA1

    fcdf35f5f6a7b38ba2232cf2b725eb52c8cbee85

  • SHA256

    1aba99167ff9d848f21bdf5e605baccd1a80e04da86f6ee3e9d075a19a7515f0

  • SHA512

    afe79f4f94097e6905d45437b059031f3ee609356a20e89badcbc5cb0e2868a36af26cd9a4e5da742ada1763d95b276f4f656229ce7a99cbef4882b7fed6804f

  • SSDEEP

    12288:bSIX87D533xNzxb9XdEpxDYsF4m98uH+WPcaFIvd:S7D533xNzl9N+YOD8aFIl

Score
10/10
amadey

Malware Config

Extracted

Family

amadey

Version

4.11

C2

http://shohetrc.com

http://sibcomputer.ru

http://tve-mail.com
Attributes
  • install_dir

    d4dd819322

  • install_file

    Utsysc.exe

  • strings_key

    8419b3024d6f72beef8af6915e592308

  • url_paths

    /forum/index.php

rc4.plain

Targets

    • Target

      2220-3-0x0000000000400000-0x00000000008B3000-memory.dmp

    • Size

      4.7MB

    • MD5

      6c5c6e4d12744987bdfc8977e4f03247

    • SHA1

      fcdf35f5f6a7b38ba2232cf2b725eb52c8cbee85

    • SHA256

      1aba99167ff9d848f21bdf5e605baccd1a80e04da86f6ee3e9d075a19a7515f0

    • SHA512

      afe79f4f94097e6905d45437b059031f3ee609356a20e89badcbc5cb0e2868a36af26cd9a4e5da742ada1763d95b276f4f656229ce7a99cbef4882b7fed6804f

    • SSDEEP

      12288:bSIX87D533xNzxb9XdEpxDYsF4m98uH+WPcaFIvd:S7D533xNzl9N+YOD8aFIl

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks