amadey | 2bcc8105a0c00adea6aee695dd793a312d91299ab5574748a02ee30bed0917e1

Analysis

max time kernel
148s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
10-12-2024 16:46

Target

2604-34-0x0000000000E70000-0x0000000001187000-memory.exe
Size

3.1MB
MD5

986fe59ce40ee62a0ad44ab649cffbc9
SHA1

e96b8eabe0ed7181ba5024670e5015e184ac4ff8
SHA256

2bcc8105a0c00adea6aee695dd793a312d91299ab5574748a02ee30bed0917e1
SHA512

d4bde97100ebf740cb58e4ea14f984a728f9e4b386b765d59aa1e41ae330036867ec12f8199c64ed6a9b74edee8c1330ed67512a3e6f4caae6680f6965b163eb
SSDEEP

49152:20sqOA+So1rv29x0ylzVUYs9Zl5lTebD:PsqOA429x0ylzVUYs9Zl5lef

Score

10^/10

Family

amadey

Version

4.42

Botnet

9c9aa5

http://185.215.113.43

Attributes

rc4.plain

Amadey
Amadey bot is a simple trojan bot primarily used for collecting reconnaissance information.
trojan amadey
Amadey family
amadey

C:\Users\Admin\AppData\Local\Temp\2604-34-0x0000000000E70000-0x0000000001187000-memory.exe
"C:\Users\Admin\AppData\Local\Temp\2604-34-0x0000000000E70000-0x0000000001187000-memory.exe"
1⤵
PID:4460

memory/4460-0-0x0000000000E70000-0x0000000001187000-memory.dmp

Filesize
3.1MB

Download
memory/4460-1-0x0000000000E70000-0x0000000001187000-memory.dmp

Filesize
3.1MB

Download