Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2364-2-0x00000000012D1000-0x0000000001339000-memory.dmp

  • Size

    416KB

  • Sample

    241227-hpn1zsspfs

  • MD5

    17c56f2ded397adbefa38ecef0e56f52

  • SHA1

    0d82f6294c56b818dcb67aaa8a222c2abb2a1c11

  • SHA256

    0a1c2cfc3014a1e3c27f1ad0b5fb6c333da47f47192347f9b28d75bab2eb8177

  • SHA512

    6e19df7b6da771968e5228bdaed18865ec83b25492314a169715ead58cd24931f1fd550099a55c22c9e210df538179e78c99b02d43cd6058b93a928c8a26fa56

  • SSDEEP

    12288:fEJ2GZ9S+7Dni3ZdrYONhg/LmnuUCqbRlYM:swQ9S+vipHhd9bRlR

Score
10/10
amadey9c9aa5

Malware Config

Extracted

Family

amadey

Version

4.42

Botnet

9c9aa5

C2

http://185.215.113.43

Attributes
  • install_dir

    abc3bc1985

  • install_file

    skotes.exe

  • strings_key

    8a35cf2ea38c2817dba29a4b5b25dcf0

  • url_paths

    /Zu7JuNko/index.php

rc4.plain

Targets

    Tasks