Overview

overview

10

Static

static

10

2612-16-0x...ry.exe

windows7-x64

1

2612-16-0x...ry.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2612-16-0x0000000000400000-0x0000000002AE2000-memory.dmp

  • Size

    20.4MB

  • Sample

    231206-vskh7aff9s

  • MD5

    cb12b16268bc2a8c9a3e45a6b2ba388d

  • SHA1

    5234da6ff2040f0dd62f809ffafd396211ccb61c

  • SHA256

    142ebca41e276f00eafea79ee32299a783367892adab6840138f72c97f3f4bf7

  • SHA512

    d4daf33db247921134b63a9c1fe6c5e1f7017c680f924f9f63e2b51bee0a185cfd834fbd1b26da8a2fec93c59fb538631cc9624e464928f611c763361376edd2

  • SSDEEP

    12288:bSIX87D533xNzxb9XdEpxDYsF4m98uH+WlcwF:S7D533xNzl9N+YODqwF

Score
10/10
amadey

Malware Config

Extracted

Family

amadey

Version

4.11

C2

http://shohetrc.com

http://sibcomputer.ru

http://tve-mail.com
Attributes
  • install_dir

    d4dd819322

  • install_file

    Utsysc.exe

  • strings_key

    8419b3024d6f72beef8af6915e592308

  • url_paths

    /forum/index.php

rc4.plain

Targets

    • Target

      2612-16-0x0000000000400000-0x0000000002AE2000-memory.dmp

    • Size

      20.4MB

    • MD5

      cb12b16268bc2a8c9a3e45a6b2ba388d

    • SHA1

      5234da6ff2040f0dd62f809ffafd396211ccb61c

    • SHA256

      142ebca41e276f00eafea79ee32299a783367892adab6840138f72c97f3f4bf7

    • SHA512

      d4daf33db247921134b63a9c1fe6c5e1f7017c680f924f9f63e2b51bee0a185cfd834fbd1b26da8a2fec93c59fb538631cc9624e464928f611c763361376edd2

    • SSDEEP

      12288:bSIX87D533xNzxb9XdEpxDYsF4m98uH+WlcwF:S7D533xNzl9N+YODqwF

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks