Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1868-2-0x0000000001131000-0x0000000001199000-memory.dmp

  • Size

    416KB

  • MD5

    24942e22f53486507d304c8d6ac46a47

  • SHA1

    7b9e417c51ee1bc0b5c23ed81a5647b2dbd88c0e

  • SHA256

    52dc5679dd7e8fd13887acaf142ed89f77c0ad7b56d1d19cb9c8650454a0d33e

  • SHA512

    2316fbdf45ea910b34c4cd6805d75e836cb3c88363a17f882b9666114a03d4875f57d7014a6e86409e39999f17cec18116842c7bbff8e0d79bb223f9541cfad4

  • SSDEEP

    12288:hxJFHxj/m35pVRgPfpHpDh/2X5ueEgNwy:7fHxj/mJTqfDa5Nw

Score
10/10
9c9aa5amadey

Malware Config

Extracted

Family

amadey

Version

4.42

Botnet

9c9aa5

C2

http://185.215.113.43

Attributes
  • install_dir

    abc3bc1985

  • install_file

    skotes.exe

  • strings_key

    8a35cf2ea38c2817dba29a4b5b25dcf0

  • url_paths

    /Zu7JuNko/index.php

rc4.plain

Signatures

Files

  • 1868-2-0x0000000001131000-0x0000000001199000-memory.dmp