Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

1740-3-0x0...ry.exe

windows7-x64

10

1740-3-0x0...ry.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1740-3-0x0000000000CD0000-0x0000000001192000-memory.dmp

  • Size

    4.8MB

  • Sample

    241226-v1y2jsspbk

  • MD5

    42617968c452a28e27f754efeb419d3e

  • SHA1

    d4d6410f3edecc143027b901f72d6b1637aa2cd8

  • SHA256

    97e50d22e2710074d59bdd56e0574499e9fd5402813fb5b55cc8359ec1637fca

  • SHA512

    059ddf0bae771492a1fbb0e383d99ee48c3e0d5fe8495feb13eeeccc44c55240c19fb00ba7efbb8c955bc383ef8d6ad62e8bb998bee5d9a3efd18f665e11c538

  • SSDEEP

    98304:tOFtaF7uRBWp8l6nFcmF+TsIQzHP7i3zfy3UZTfPRYd:tsG+TTuXi3zFHR

Score
10/10
amadeyfed3aatrojan

Malware Config

Extracted

Family

amadey

Version

4.41

Botnet

fed3aa

C2

http://185.215.113.16

Attributes
  • install_dir

    44111dbc49

  • install_file

    axplong.exe

  • strings_key

    8d0ad6945b1a30a186ec2d30be6db0b5

  • url_paths

    /Jo89Ku7d/index.php

rc4.plain
1
a091ec0a6e22276a96a99c1d34ef679c

Targets

    • Target

      1740-3-0x0000000000CD0000-0x0000000001192000-memory.dmp

    • Size

      4.8MB

    • MD5

      42617968c452a28e27f754efeb419d3e

    • SHA1

      d4d6410f3edecc143027b901f72d6b1637aa2cd8

    • SHA256

      97e50d22e2710074d59bdd56e0574499e9fd5402813fb5b55cc8359ec1637fca

    • SHA512

      059ddf0bae771492a1fbb0e383d99ee48c3e0d5fe8495feb13eeeccc44c55240c19fb00ba7efbb8c955bc383ef8d6ad62e8bb998bee5d9a3efd18f665e11c538

    • SSDEEP

      98304:tOFtaF7uRBWp8l6nFcmF+TsIQzHP7i3zfy3UZTfPRYd:tsG+TTuXi3zFHR

    Score
    10/10
    amadeytrojan

    • Amadey

      Amadey bot is a simple trojan bot primarily used for collecting reconnaissance information.

      trojanamadey

    • Amadey family

      amadey
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.