Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2540-2-0x00000000012E1000-0x0000000001349000-memory.dmp

  • Size

    416KB

  • Sample

    241227-l6h3vatphz

  • MD5

    add88910d5650291ea5ae3c2e6aea118

  • SHA1

    187add45636a57a8ffa4d425ad2c97efc542fcfc

  • SHA256

    cfb5db27ca63ddfb400808108a56b09a287c6745ea67b707643f03895d84a26b

  • SHA512

    e94714dc787913e632d9435dd89f3c3ac037ab816b22f91c1c3a5d74ea3224f541a86cdc4548fcb6402bbebefc3d19ec5b6b35b489f91826fbdcbedc86581001

  • SSDEEP

    12288:dJEqTmMkECAA7iPHrfeS/e6/YJ6ujflktJn2Y:gQmMkE1wifpeBFk

Score
10/10
amadey9c9aa5

Malware Config

Extracted

Family

amadey

Version

4.42

Botnet

9c9aa5

C2

http://185.215.113.43

Attributes
  • install_dir

    abc3bc1985

  • install_file

    skotes.exe

  • strings_key

    8a35cf2ea38c2817dba29a4b5b25dcf0

  • url_paths

    /Zu7JuNko/index.php

rc4.plain

Targets

    Tasks