Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2556-3-0x0000000000E00000-0x00000000012B2000-memory.dmp
-
Size
4.7MB
-
Sample
241226-v53kjasnay
-
MD5
68c3f326e30c0201f429d158faaf09d5
-
SHA1
58841f29d052dedf662fc6b9b554b0d85d2b8f0f
-
SHA256
37307b7940c9516836f73cef756b2a48ea5cee77265d738ce51672a72d638996
-
SHA512
6b5a4a4ab18a02b20f87ff2b90cbe4f40d0607299ddb12463c644b39339dc5e7ff2df4b50b66046ce9162814e33ab1049055a0c08aa47f27c93579f9a8c4d645
-
SSDEEP
98304:9YaD7htazD+54/1WljAw5VLuZ2yZXBvFeawgPwP1TRme/BIwa:97D2Z7ZRvETgIPt/BIw
Malware Config
Extracted
amadey
4.41
fed3aa
http://185.215.113.16
-
install_dir
44111dbc49
-
install_file
axplong.exe
-
strings_key
8d0ad6945b1a30a186ec2d30be6db0b5
-
url_paths
/Jo89Ku7d/index.php
Targets
-
-
Target
2556-3-0x0000000000E00000-0x00000000012B2000-memory.dmp
-
Size
4.7MB
-
MD5
68c3f326e30c0201f429d158faaf09d5
-
SHA1
58841f29d052dedf662fc6b9b554b0d85d2b8f0f
-
SHA256
37307b7940c9516836f73cef756b2a48ea5cee77265d738ce51672a72d638996
-
SHA512
6b5a4a4ab18a02b20f87ff2b90cbe4f40d0607299ddb12463c644b39339dc5e7ff2df4b50b66046ce9162814e33ab1049055a0c08aa47f27c93579f9a8c4d645
-
SSDEEP
98304:9YaD7htazD+54/1WljAw5VLuZ2yZXBvFeawgPwP1TRme/BIwa:97D2Z7ZRvETgIPt/BIw
Score10/10-
Amadey
Amadey bot is a simple trojan bot primarily used for collecting reconnaissance information.
-
Amadey family
-