amadey | 1bd25c91b40f8a04e270b281fa8ab00c53357ef3a36dda3cc6704cd54c29635c | Triage

Sharing

General

Target

1bd25c91b40f8a04e270b281fa8ab00c53357ef3a36dda3cc6704cd54c29635c
Size

301KB
Sample

240417-qzx1msaa89
MD5

2561b19d81a84bdbf951721506466d4a
SHA1

471f019feeef8e241d2cd7a69f2a38c840061d49
SHA256

1bd25c91b40f8a04e270b281fa8ab00c53357ef3a36dda3cc6704cd54c29635c
SHA512

24ceac1943d6538c3a94d67b0ea8fe557182b2c3d1f840a7d2a3f19cf03e92399dd2b8ddb6221884046c5a17cc0129c63c1c6451f404a5a731878b80fefbc9fd
SSDEEP

6144:Ec0zpgJf3/OoJB/QE5NQSczmBFmufSj0UO53Lez2bdbFD5SXsRK:EDzpsf3rB/yScSSASE53ftxU8RK

Score

10^/10

amadey trojan

Malware Config

Extracted

Family

amadey

Version

4.18

Attributes

install_dir
154561dcbf
install_file
Dctooux.exe
strings_key
2cd47fa043c815e1a033c67832f3c6a5
url_paths
/j4Fvskd3/index.php

rc4.plain

Targets

- Target
  
  3fa8f8c64210e0949184380e438a86e4d8e597c7b63cd8591232083b97fa5348.exe
- Size
  
  420KB
- MD5
  
  7b432411c12d3d0d31ecaf9011450e42
- SHA1
  
  968943d42ba1e8938989b6ed1884195c2285396f
- SHA256
  
  3fa8f8c64210e0949184380e438a86e4d8e597c7b63cd8591232083b97fa5348
- SHA512
  
  6881c00ec9674a90b6390e18bcff67d0a5c837411f83955869a9cb2b62bccdedbc93561e70f6ddab7baaf908c8154de3a5bb982d0ee9ecc62363cc67d9cf563b
- SSDEEP
  
  6144:lfBwgfV+aXoGJR1xpppStlxu4qGilNZZDLxFLWj4+36o9:l3V+anFxZUq1NZJ9N8qu
Score

10^/10

amadey trojan
- Amadey
  Amadey bot is a simple trojan bot primarily used for collecting reconnaissance information.
  trojan amadey
- Blocklisted process makes network request
- Downloads MZ/PE file
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2