sendsafe | 9843da0234145d9ca5cb3a5b389db04bd285b2bca8ee265e5b99d2ad3de17f23 | Triage

Submit
Reports

Overview

overview

Static

static

1

30871838cc...54.exe

windows7-x64

30871838cc...54.exe

windows10-2004-x64

Sharing

General

Target

30871838cccaa52d8d99195969509454
Size

2.1MB
Sample

231231-k87njshbhr
MD5

30871838cccaa52d8d99195969509454
SHA1

86c160bd03bc2967e66ee78d17110fbef4fe6131
SHA256

9843da0234145d9ca5cb3a5b389db04bd285b2bca8ee265e5b99d2ad3de17f23
SHA512

54514b37144e84795ebeb44d6c1a3f760017d8075a292e54c28daff4d4877968030b45b5f89e204f4b475429102e58d9054320ce34ab6b49c2e4a8fbc61bd7dc
SSDEEP

49152:dgyrkMY8zYZx1970lO+gFiQknJXE4/d8wESU+tc1aW:dTQ7/B5BiQkn+gd8LSBtckW

Score

10^/10

sendsafe unregistered botnet spam

Static task

static1

Behavioral task

behavioral1

Sample

30871838cccaa52d8d99195969509454.exe

Resource

win7-20231215-en

sendsafe unregistered botnet spam

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

30871838cccaa52d8d99195969509454.exe

Resource

win10v2004-20231215-en

sendsafe unregistered botnet spam

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

sendsafe

Botnet

UNREGISTERED

C2

31.44.184.47:50077

31.44.184.47:50078

Attributes

service_name
Enterprise Mailing Service

Targets

- Target
  
  30871838cccaa52d8d99195969509454
- Size
  
  2.1MB
- MD5
  
  30871838cccaa52d8d99195969509454
- SHA1
  
  86c160bd03bc2967e66ee78d17110fbef4fe6131
- SHA256
  
  9843da0234145d9ca5cb3a5b389db04bd285b2bca8ee265e5b99d2ad3de17f23
- SHA512
  
  54514b37144e84795ebeb44d6c1a3f760017d8075a292e54c28daff4d4877968030b45b5f89e204f4b475429102e58d9054320ce34ab6b49c2e4a8fbc61bd7dc
- SSDEEP
  
  49152:dgyrkMY8zYZx1970lO+gFiQknJXE4/d8wESU+tc1aW:dTQ7/B5BiQkn+gd8LSBtckW
Score

10^/10

sendsafe unregistered botnet spam
- SendSafe
  SendSafe is a notorious spam tool which then turned into spam botnet.
  spam botnet sendsafe
- SendSafe payload
  botnet
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

sendsafeunregisteredbotnetspam

behavioral2

sendsafeunregisteredbotnetspam

© 2018-2024

Terms | Privacy