Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1252-2-0x0000000000DE1000-0x0000000000E49000-memory.dmp

  • Size

    416KB

  • Sample

    241212-sgw2qsxpg1

  • MD5

    1b19e92b0d840e0d0ce15e6d1265e0b3

  • SHA1

    f3749c4e926a1387f843eee352c153b0eb74dbac

  • SHA256

    2b1cf98a00f6e408707277660d1a3a7bdea4e320aeb401fc0c7cfd4bfc143dff

  • SHA512

    f9649fef5bdf71529d74250369abd81afe854069978b19c58e4509ffdb04fded2ca7f7e1810021fe2458c77e1c574e21680022e3850ea48d26cfc4f90c8bc334

  • SSDEEP

    12288:rVxqr2xIUSVJqoM4jua/fly/um3uEIAT:vI2xIU6ZLjlchT

Score
10/10
amadey9c9aa5

Malware Config

Extracted

Family

amadey

Version

4.42

Botnet

9c9aa5

C2

http://185.215.113.43

Attributes
  • install_dir

    abc3bc1985

  • install_file

    skotes.exe

  • strings_key

    8a35cf2ea38c2817dba29a4b5b25dcf0

  • url_paths

    /Zu7JuNko/index.php

rc4.plain

Targets

    Tasks