amadey | eefe9e0a2b4d406427090395820dd9d78f8bfe71ab095f154e8a1dbd374c9c98 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1496-31-0x...ry.exe

windows7-x64

1496-31-0x...ry.exe

windows10-2004-x64

Sharing

General

Target

1496-31-0x0000000000590000-0x00000000008B5000-memory.dmp
Size

3.1MB
Sample

241227-n278aavncn
MD5

a105497c61aa90e36b61bc0dc2fd5d30
SHA1

2ff59f17b98287366a89962380c10a24e2c78c0b
SHA256

eefe9e0a2b4d406427090395820dd9d78f8bfe71ab095f154e8a1dbd374c9c98
SHA512

e2bfde61f8bf28b9bc715019d9b5c21b10d94e8d764ebddbfa17cde0461a8aa649da7270dca6ae5abe9dee06a11e9c27bf121907bc81c2ba4d3b0fb84c8d8c20
SSDEEP

49152:YHEpgerKxFzkOpo8hLiH7lgK5XIxidXdgClBk2/k:GEpge2PzkOpPtqd54xidXxC2/k

Score

10^/10

amadey trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

1496-31-0x0000000000590000-0x00000000008B5000-memory.exe

Resource

win7-20240903-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

1496-31-0x0000000000590000-0x00000000008B5000-memory.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  1496-31-0x0000000000590000-0x00000000008B5000-memory.dmp
- Size
  
  3.1MB
- MD5
  
  a105497c61aa90e36b61bc0dc2fd5d30
- SHA1
  
  2ff59f17b98287366a89962380c10a24e2c78c0b
- SHA256
  
  eefe9e0a2b4d406427090395820dd9d78f8bfe71ab095f154e8a1dbd374c9c98
- SHA512
  
  e2bfde61f8bf28b9bc715019d9b5c21b10d94e8d764ebddbfa17cde0461a8aa649da7270dca6ae5abe9dee06a11e9c27bf121907bc81c2ba4d3b0fb84c8d8c20
- SSDEEP
  
  49152:YHEpgerKxFzkOpo8hLiH7lgK5XIxidXdgClBk2/k:GEpge2PzkOpPtqd54xidXxC2/k
Score

10^/10

amadey trojan
- Amadey
  Amadey bot is a simple trojan bot primarily used for collecting reconnaissance information.
  trojan amadey
- Amadey family
  amadey
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy