Amadey2

Amadey2, 2023+ variant. Payload download with Cleartext HTTP. Amadey botnet, stealer dropper.

Threat Profile
Type Loader
Programming LanguageC
C2 ProtocolHTTP
First Seen2018
Targets Kuresel
Purpose / Capabilities
  • Loader+Botnet
No C2 servers have been identified for this family yet.

Research Reports (1)

Critical

Amadey 2 -- 174KB, 196.251.107.104 Açık Metin C2, 11x06x2026 Tarihli URL, BTC | Kritik

Amadey2 174KB. AÇIK METİN C2: 196.251.107.104/11x06x2026_x64.exe + clp5.exe. BTC 1DQdHKjQ.

Read Report →