Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2076-35-0x00000000006C0000-0x00000000009E0000-memory.dmp
-
Size
3.1MB
-
MD5
fe1491408ec36d1763fd2f5c903a1e53
-
SHA1
1758f8fc10cb40dd8390ef0447b27082205f3352
-
SHA256
caa7b1f66fc617d42e88783370d7b6e4ad6dbba0adbf9c0259831aaabd76f04c
-
SHA512
066b24086d387fb67881a418ee7388b79b24dae6d8c31d990ea8abc1e07e2041410d8694cebe34bf2a683733d68af7f3ac994ac0a76592e97ee527a9c19daa04
-
SSDEEP
24576:AezDIN25Mw7/FR1vJB3vb+VBi7cCgTUvRS6r0cexJklAm8rjzmmOHmerqwLvMIh5:rDE2n7/L1D3j+na3bJrGklAzKhOI3Tu
Score
10/10
Malware Config
Extracted
Family
amadey
Version
4.42
Botnet
9c9aa5
C2
http://185.215.113.43
Attributes
-
install_dir
abc3bc1985
-
install_file
skotes.exe
-
strings_key
8a35cf2ea38c2817dba29a4b5b25dcf0
-
url_paths
/Zu7JuNko/index.php
rc4.plain
1
006700e5a2ab05704bbb0c589b88924d
Signatures
-
Amadey family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2076-35-0x00000000006C0000-0x00000000009E0000-memory.dmp
Headers
Sections