Overview

overview

10

Static

static

10

2a00000.exe

windows7-x64

3

2a00000.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2a00000.exe

  • Size

    452KB

  • Sample

    240619-yxpkgszbla

  • MD5

    f1b37366c145972849d8a19f96d6eb37

  • SHA1

    6f1796ae181e8fc49d891b821a8eb77ceb660a26

  • SHA256

    8b6f6791b4607f7ace3456828c44e96687e95fbdbd6b827124a26c9f5c8a3d6d

  • SHA512

    d6a4affe01338d56b2e6f24998a079b22ad5fef29b150bad0ac5a348baf74a305b8edd65a33b151828b837775da159a837d654bb4cd11caeedf79118a3a82ae6

  • SSDEEP

    12288:BPQxQCYTZn6Lh6U9Rge4yr/o/Brwu7g1Fkp7tnUv:BPoQJh6Lh66RNbot6yp5Uv

Score
10/10
amadeyffb1b9

Malware Config

Extracted

Family

amadey

Version

4.30

Botnet

ffb1b9

C2

http://proresupdate.com

Attributes
  • install_dir

    4bbb72a446

  • install_file

    Hkbsse.exe

  • strings_key

    1ebbd218121948a356341fff55521237

  • url_paths

    /h9fmdW5/index.php

rc4.plain

Targets

    • Target

      2a00000.exe

    • Size

      452KB

    • MD5

      f1b37366c145972849d8a19f96d6eb37

    • SHA1

      6f1796ae181e8fc49d891b821a8eb77ceb660a26

    • SHA256

      8b6f6791b4607f7ace3456828c44e96687e95fbdbd6b827124a26c9f5c8a3d6d

    • SHA512

      d6a4affe01338d56b2e6f24998a079b22ad5fef29b150bad0ac5a348baf74a305b8edd65a33b151828b837775da159a837d654bb4cd11caeedf79118a3a82ae6

    • SSDEEP

      12288:BPQxQCYTZn6Lh6U9Rge4yr/o/Brwu7g1Fkp7tnUv:BPoQJh6Lh66RNbot6yp5Uv

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks