Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

b24cd81963...2a.exe

windows7-x64

10

b24cd81963...2a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b24cd81963b57556ae1bd102ca8ee22a.exe

  • Size

    482KB

  • Sample

    231224-kr6d6abefl

  • MD5

    b24cd81963b57556ae1bd102ca8ee22a

  • SHA1

    e8c36efb9a650fe745dda09415d2a5d0813a7619

  • SHA256

    252850b3ba00d2467c4388bc99ce5c14abc78c21aba87062760bbb3d9aaf1df8

  • SHA512

    59198a8493f01a61d58eadfec5a96d97b96e0bb78e9a0776638fd02a53b7671e47d53254f2751801c548af65bfdceb7b6928da104ab3a53e35585ec36e5fb158

  • SSDEEP

    12288:FC5b6bew+1WDhTk4qFLrcZfk585i5Q9pJfKPV:Q5BwuEZk40cpk585iwpJf

Score
10/10
amadeytrojan

Malware Config

Extracted

Family

amadey

Version

4.14

C2

http://anfesq.com

http://cbinr.com

http://rimakc.ru
Attributes
  • install_dir

    68fd3d7ade

  • install_file

    Utsysc.exe

  • strings_key

    27ec7fd6f50f63b8af0c1d3deefcc8fe

  • url_paths

    /forum/index.php

rc4.plain

Targets

    • Target

      b24cd81963b57556ae1bd102ca8ee22a.exe

    • Size

      482KB

    • MD5

      b24cd81963b57556ae1bd102ca8ee22a

    • SHA1

      e8c36efb9a650fe745dda09415d2a5d0813a7619

    • SHA256

      252850b3ba00d2467c4388bc99ce5c14abc78c21aba87062760bbb3d9aaf1df8

    • SHA512

      59198a8493f01a61d58eadfec5a96d97b96e0bb78e9a0776638fd02a53b7671e47d53254f2751801c548af65bfdceb7b6928da104ab3a53e35585ec36e5fb158

    • SSDEEP

      12288:FC5b6bew+1WDhTk4qFLrcZfk585i5Q9pJfKPV:Q5BwuEZk40cpk585iwpJf

    Score
    10/10
    amadeytrojan

    • Amadey

      Amadey bot is a simple trojan bot primarily used for collecting reconnaissance information.

      trojanamadey

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks