General
-
Target
1996-2-0x0000000000821000-0x0000000000889000-memory.dmp
-
Size
416KB
-
Sample
241227-ezfwks1qdz
-
MD5
494095b09e8d5d25dd3cc9259fb81be0
-
SHA1
b907b3e3f0087ae6f9d741c4b508d319ccd3348b
-
SHA256
bafc0df4899742556112b960149afe9541d22b63c8d88f32e6cd983f124f3492
-
SHA512
5e67ac44ef0e645053f56ac849cf11a060b009da4722c1ef210fcb8281363b4b5964afae770494b480ca0a4743febcf07ca6f5443cfa122b9a6cd4b63e31829e
-
SSDEEP
12288:H84IbtiwV5jy17dpXO3/FmB6/KjruQc0XKw:c/bAwV5jQRxLBNRXK
Malware Config
Extracted
Family
amadey
Version
4.42
Botnet
9c9aa5
C2
http://185.215.113.43
Attributes
-
install_dir
abc3bc1985
-
install_file
skotes.exe
-
strings_key
8a35cf2ea38c2817dba29a4b5b25dcf0
-
url_paths
/Zu7JuNko/index.php
rc4.plain
1
006700e5a2ab05704bbb0c589b88924d