Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2104-3-0x0...ry.exe

windows7-x64

10

2104-3-0x0...ry.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    26/12/2024, 18:30 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2104-3-0x0000000000FF0000-0x000000000149A000-memory.exe

  • Size

    4.7MB

  • MD5

    7c0a8a8cb2301f2f480c3a7566cec970

  • SHA1

    3f9086640060c7c89754e71c30e96500f9354a94

  • SHA256

    8b4aa9af8bd96f0f31d5f2e93cff26c7a6325ccf12036c6477884095203b48c0

  • SHA512

    d3679c8030438be691181a78d5f08f0f38ee472ae1a3b46def675a85e1093070d4b0380ac3cc6313bfb9d84b13be3bc8e68042a4ef093ee07b700e51270cdc82

  • SSDEEP

    98304:Qu2V3S5r88QF3EqEyMKP8gk+zYPZcVw93ZD/um81jZXYoCoxe:QK8k+zYPSVwmPF9Yo1c

Score
10/10
amadeytrojan

Malware Config

Signatures

  • Amadey

    Amadey bot is a simple trojan bot primarily used for collecting reconnaissance information.

    trojanamadey
  • Amadey family
    amadey

Processes

  • C:\Users\Admin\AppData\Local\Temp\2104-3-0x0000000000FF0000-0x000000000149A000-memory.exe
    "C:\Users\Admin\AppData\Local\Temp\2104-3-0x0000000000FF0000-0x000000000149A000-memory.exe"
    1⤵
      PID:2512

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2512-0-0x0000000000FF0000-0x000000000149A000-memory.dmp

      Filesize

      4.7MB

      Download

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.