Overview

overview

10

Static

static

10

2104-3-0x0...ry.exe

windows7-x64

10

2104-3-0x0...ry.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    26-12-2024 18:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2104-3-0x0000000000FF0000-0x000000000149A000-memory.exe

  • Size

    4.7MB

  • MD5

    7c0a8a8cb2301f2f480c3a7566cec970

  • SHA1

    3f9086640060c7c89754e71c30e96500f9354a94

  • SHA256

    8b4aa9af8bd96f0f31d5f2e93cff26c7a6325ccf12036c6477884095203b48c0

  • SHA512

    d3679c8030438be691181a78d5f08f0f38ee472ae1a3b46def675a85e1093070d4b0380ac3cc6313bfb9d84b13be3bc8e68042a4ef093ee07b700e51270cdc82

  • SSDEEP

    98304:Qu2V3S5r88QF3EqEyMKP8gk+zYPZcVw93ZD/um81jZXYoCoxe:QK8k+zYPSVwmPF9Yo1c

Score
10/10
amadeytrojan

Malware Config

Signatures

  • Amadey

    Amadey bot is a simple trojan bot primarily used for collecting reconnaissance information.

    trojanamadey
  • Amadey family
    amadey

Processes

  • C:\Users\Admin\AppData\Local\Temp\2104-3-0x0000000000FF0000-0x000000000149A000-memory.exe
    "C:\Users\Admin\AppData\Local\Temp\2104-3-0x0000000000FF0000-0x000000000149A000-memory.exe"
    1⤵
      PID:2512

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2512-0-0x0000000000FF0000-0x000000000149A000-memory.dmp

      Filesize

      4.7MB

      Download