Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2620-2-0x00000000009E1000-0x0000000000A49000-memory.dmp

  • Size

    416KB

  • Sample

    241212-q93zmswmdx

  • MD5

    8b1d5aa5c68d7e63e469830740cd46cf

  • SHA1

    ba82a57b790a1c7086be3063a9e9b7cd1b0fd573

  • SHA256

    7408f7c0228b41fc2bc2427af90cda7faf42da1d3bd4dcb2c94cdf10975d0224

  • SHA512

    7215f54f964b45b68b9561bb99a9d36b7d6fcf605c7968f84e5db94f28c4f79e0ebaea237a2a8f384d49e3d35f1a465687860b7268923761fe3235fd98149be1

  • SSDEEP

    12288:rFALgXbVItJwSVJkbgUUTlo/gv3uEIAT9:mEXbVITRXAMlVhT

Score
10/10
amadey9c9aa5

Malware Config

Extracted

Family

amadey

Version

4.42

Botnet

9c9aa5

C2

http://185.215.113.43

Attributes
  • install_dir

    abc3bc1985

  • install_file

    skotes.exe

  • strings_key

    8a35cf2ea38c2817dba29a4b5b25dcf0

  • url_paths

    /Zu7JuNko/index.php

rc4.plain

Targets

    Tasks