General

  • Target

    2220-2-0x0000000001371000-0x00000000013D9000-memory.dmp

  • Size

    416KB

  • Sample

    241212-yqqtzaxpdq

  • MD5

    146655250534d4d410fc961a7e264650

  • SHA1

    ac74933178270edb1ba9864580fca1998535a3da

  • SHA256

    72ef1dd760c3094feddd6380d9d7e21a1c3941cbc1f9ebf7c01284e8b460d1cd

  • SHA512

    034851e8df9366597b86e4b4bb24e3c1e43de14205acad12f021356cb071bb0b7be340a55f974d75058e335a094e3c067fa179d44e8dcd070b9565e2e0fc4d51

  • SSDEEP

    12288:b9J1G8Pdcmlqgvt8XvO3fa/WvhGVu6IkpX:hJk8PdcUx13fZv4pp

Score
10/10

Malware Config

Extracted

Family

amadey

Version

4.42

Botnet

9c9aa5

C2

http://185.215.113.43

Attributes
  • install_dir

    abc3bc1985

  • install_file

    skotes.exe

  • strings_key

    8a35cf2ea38c2817dba29a4b5b25dcf0

  • url_paths

    /Zu7JuNko/index.php

rc4.plain

Targets

    Tasks