amadey | db403bc162d9f57fa1cb3325602483cfa89231d4ac5c55ab7d7207927cf69ec1 | Triage

Sharing

General

Target

db403bc162d9f57fa1cb3325602483cfa89231d4ac5c55ab7d7207927cf69ec1.exe
Size

1.9MB
Sample

241119-3pykmsvgke
MD5

c62585e84d5db59e2d7312b08e96bff7
SHA1

32a4c7231af411ed8bfdf791f7567bf093e0f3c7
SHA256

db403bc162d9f57fa1cb3325602483cfa89231d4ac5c55ab7d7207927cf69ec1
SHA512

c6f167a797e18786478a1427679946dfb1ca68cc4e20163b74ebd2cb53c76123be849c37777637e7491fe309b40cb07c102b8cf069a68cfe31c646b762780f30
SSDEEP

49152:y5vBetiumxMKRZf/UOEA0WZBfknUDysl5IZ8c:WBeYfZkOEA5sYM8c

Score

10^/10

amadey discovery trojan

Malware Config

Targets

- Target
  
  db403bc162d9f57fa1cb3325602483cfa89231d4ac5c55ab7d7207927cf69ec1.exe
- Size
  
  1.9MB
- MD5
  
  c62585e84d5db59e2d7312b08e96bff7
- SHA1
  
  32a4c7231af411ed8bfdf791f7567bf093e0f3c7
- SHA256
  
  db403bc162d9f57fa1cb3325602483cfa89231d4ac5c55ab7d7207927cf69ec1
- SHA512
  
  c6f167a797e18786478a1427679946dfb1ca68cc4e20163b74ebd2cb53c76123be849c37777637e7491fe309b40cb07c102b8cf069a68cfe31c646b762780f30
- SSDEEP
  
  49152:y5vBetiumxMKRZf/UOEA0WZBfknUDysl5IZ8c:WBeYfZkOEA5sYM8c
Score

10^/10

amadey discovery trojan
- Amadey
  Amadey bot is a simple trojan bot primarily used for collecting reconnaissance information.
  trojan amadey
- Amadey family
  amadey
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

amadeydiscoverytrojan

behavioral2

amadeydiscoverytrojan