Overview

overview

10

Static

static

10

3280-3-0x0...ry.exe

windows7-x64

10

3280-3-0x0...ry.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    96s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12-07-2024 21:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3280-3-0x00000000004C0000-0x0000000000978000-memory.exe

  • Size

    4.7MB

  • MD5

    4761b781b83e5f8829b075d66421feba

  • SHA1

    841fe18c8c5f6c6b58cb306f17f949a6dd0854a6

  • SHA256

    e5ff46caaa6fb44d7e46bec649338c061f0b7f277fbedad8ff899a416ce16206

  • SHA512

    9abbad7a39871fd3a27cef5bbbfdc54f4017274aee03c8c07c641b3aaa5f47ec7fc0274cf4e9d0cc14d538ca810c88fb34000104bc92d620e6b5c09f4900c1ab

  • SSDEEP

    98304:KTm3OsraMQo+LLRb6Rt/QG0+YblJ+89sKu6D2BQWJQh:KzFb6RBwd92Xq9h

Score
10/10
amadeytrojan

Malware Config

Signatures

  • Amadey

    Amadey bot is a simple trojan bot primarily used for collecting reconnaissance information.

    trojanamadey

Processes

  • C:\Users\Admin\AppData\Local\Temp\3280-3-0x00000000004C0000-0x0000000000978000-memory.exe
    "C:\Users\Admin\AppData\Local\Temp\3280-3-0x00000000004C0000-0x0000000000978000-memory.exe"
    1⤵
      PID:1536

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1536-0-0x00000000004C0000-0x0000000000978000-memory.dmp

      Filesize

      4.7MB

      Download

    • memory/1536-1-0x00000000004C0000-0x0000000000978000-memory.dmp

      Filesize

      4.7MB

      Download