Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4916-16-0x00000000008D1000-0x0000000000939000-memory.dmp

  • Size

    416KB

  • Sample

    241212-1fn9hayjcz

  • MD5

    02719939e8312d4adb660edbf064a08f

  • SHA1

    9a7031741792d6576292e39fe1bd84488d983dd6

  • SHA256

    3fc506a68d56e274a478ef3dcf960981e95530c11cf7dae91b7147481e09a165

  • SHA512

    8f02eea86f518cc37c11057390bc4026141b13ca173182b4dabcf907e1cfe19a4b234b682395ae500914acf5369a1388029ea21a6fb633f99f3dfa56caad46e8

  • SSDEEP

    12288:Cw0blRlBeDbWyS0UG4OzbLHqg/CEyurRxJQ1:HmjlBeb/I14qs3JQ

Score
10/10
amadey9c9aa5

Malware Config

Extracted

Family

amadey

Version

4.42

Botnet

9c9aa5

C2

http://185.215.113.43

Attributes
  • install_dir

    abc3bc1985

  • install_file

    skotes.exe

  • strings_key

    8a35cf2ea38c2817dba29a4b5b25dcf0

  • url_paths

    /Zu7JuNko/index.php

rc4.plain

Targets

    Tasks