amadey | 402d0e5e4a4df6913f02e2459047edea51028fb06c042824d6b3c4d487885686

Analysis

max time kernel
150s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
27-11-2024 20:04

Target

396-35-0x0000000000710000-0x0000000000BD0000-memory.exe
Size

4.8MB
MD5

d4f3f34a67f2f3c74d35ad4cc05e61f3
SHA1

c603222218d4d8ab256750795a415e73f306fb4e
SHA256

402d0e5e4a4df6913f02e2459047edea51028fb06c042824d6b3c4d487885686
SHA512

3a028e12791dfed98ab0c23975f75d46d08f6423d2b798465421cb4d458e600c31984b125f45d4ba071a5d1e95d9e0736af4ac265935f80265f3f30de7dc98cf
SSDEEP

98304:/g83Wq8BJqKv2R2A7JtXB7267Xfqsq/TpMmoZ5n5Nftpaj2:/i2f9Dqn9Mmo9NV

Score

10^/10

amadey trojan

Amadey
Amadey bot is a simple trojan bot primarily used for collecting reconnaissance information.
trojan amadey
Amadey family
amadey

C:\Users\Admin\AppData\Local\Temp\396-35-0x0000000000710000-0x0000000000BD0000-memory.exe
"C:\Users\Admin\AppData\Local\Temp\396-35-0x0000000000710000-0x0000000000BD0000-memory.exe"
1⤵
PID:5008

memory/5008-0-0x0000000000710000-0x0000000000BD0000-memory.dmp

Filesize
4.8MB

Download
memory/5008-1-0x0000000000710000-0x0000000000BD0000-memory.dmp

Filesize
4.8MB

Download