amadey | ff18983d4eb23e0aeb6f3382bd619a8fbacbd36810a5b93dbf9e6334f2324c8a | Triage

Sharing

General

Target

2428-3-0x0000000000400000-0x00000000007FA000-memory.dmp
Size

4.0MB
Sample

231203-k18kwaaf32
MD5

f64cdf095ed7dcc82c4a16334135c88f
SHA1

334a59581dbae6947cc8ff024bf3ed683522a0cd
SHA256

ff18983d4eb23e0aeb6f3382bd619a8fbacbd36810a5b93dbf9e6334f2324c8a
SHA512

7715a92a284cd172caaef07be7e58666bf65660323d9de77cea60e9823fe2271849a256b34299b7002094ecc317db112fb8557104ce82153d328885cee71a049
SSDEEP

12288:gRmHUXaD/yzl4gH8Mhb+L0mspumesiW1a8i5baM:MaD/yzWgcxLirHti5bl

Score

10^/10

amadey

Malware Config

Extracted

Family

amadey

Version

4.13

C2

http://77.91.76.37

Attributes

install_dir
c508585d38
install_file
Utsysc.exe
strings_key
c736fd5bdd26ef77013837dee2004742
url_paths
/g8samsA2/index.php

rc4.plain

Targets

- Target
  
  2428-3-0x0000000000400000-0x00000000007FA000-memory.dmp
- Size
  
  4.0MB
- MD5
  
  f64cdf095ed7dcc82c4a16334135c88f
- SHA1
  
  334a59581dbae6947cc8ff024bf3ed683522a0cd
- SHA256
  
  ff18983d4eb23e0aeb6f3382bd619a8fbacbd36810a5b93dbf9e6334f2324c8a
- SHA512
  
  7715a92a284cd172caaef07be7e58666bf65660323d9de77cea60e9823fe2271849a256b34299b7002094ecc317db112fb8557104ce82153d328885cee71a049
- SSDEEP
  
  12288:gRmHUXaD/yzl4gH8Mhb+L0mspumesiW1a8i5baM:MaD/yzWgcxLirHti5bl
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2