amadey | 658b58a87263e476bb0c37fdc9e0e92d2118af0b6a66b6b6e587af7b93853c33 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1620-3-0x0...ry.exe

windows7-x64

1620-3-0x0...ry.exe

windows10-2004-x64

Sharing

General

Target

1620-3-0x0000000000280000-0x0000000000744000-memory.dmp
Size

4.8MB
Sample

241227-fmphmasjez
MD5

9ab4aab0a9735b5fce4a80e65e6112ab
SHA1

1db4f6dacf3f4586427786eb5c7cfd67c9ba50ef
SHA256

658b58a87263e476bb0c37fdc9e0e92d2118af0b6a66b6b6e587af7b93853c33
SHA512

36ec7537ccef9babaf5a4ca51d067e0728f5dda7c0fbbf9e5e330b4e839084d797289387bcfc73cff43cb7a02d10e3deb7b89de8ce179e4813ac0b16d9342439
SSDEEP

98304:lShOCjQzvt/EU+y8n/oDxraFloo1CQIEWpnMFkKBNiw7S70:lL/9IlzG4GcNiX7

Score

10^/10

amadey fed3aa trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

1620-3-0x0000000000280000-0x0000000000744000-memory.exe

Resource

win7-20240903-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

1620-3-0x0000000000280000-0x0000000000744000-memory.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

amadey

Version

4.41

Botnet

fed3aa

C2

http://185.215.113.16

Attributes

install_dir
44111dbc49
install_file
axplong.exe
strings_key
8d0ad6945b1a30a186ec2d30be6db0b5
url_paths
/Jo89Ku7d/index.php

rc4.plain

1
a091ec0a6e22276a96a99c1d34ef679c

Targets

- Target
  
  1620-3-0x0000000000280000-0x0000000000744000-memory.dmp
- Size
  
  4.8MB
- MD5
  
  9ab4aab0a9735b5fce4a80e65e6112ab
- SHA1
  
  1db4f6dacf3f4586427786eb5c7cfd67c9ba50ef
- SHA256
  
  658b58a87263e476bb0c37fdc9e0e92d2118af0b6a66b6b6e587af7b93853c33
- SHA512
  
  36ec7537ccef9babaf5a4ca51d067e0728f5dda7c0fbbf9e5e330b4e839084d797289387bcfc73cff43cb7a02d10e3deb7b89de8ce179e4813ac0b16d9342439
- SSDEEP
  
  98304:lShOCjQzvt/EU+y8n/oDxraFloo1CQIEWpnMFkKBNiw7S70:lL/9IlzG4GcNiX7
Score

10^/10

amadey trojan
- Amadey
  Amadey bot is a simple trojan bot primarily used for collecting reconnaissance information.
  trojan amadey
- Amadey family
  amadey
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.