Amadey Bot | Malware Analysis | Sample Report | Basic Summary

Taking a look at another malware sample report and this time it is Amadey. This sample contained both Amadey and Redline Stealer and there are a lot of executables and processes going on! The sample seemed to show that the executables were being transferred and dropped from a Russian domain or repository.

Amadey can be used as a dropper/loader and as an info stealer. Phishing is the main method of infecting machines with this malware. Amadey still uses the old and infamous External Blue exploit.

For extra content that is too dangerous for YouTube, you can subscribe to the ABB Patreon for as little as £3 a month and support me. https://www.patreon.com/AvoidingBigBrother

Buy me a coffee in Bitcoin! Head over to the ABB donate page: https://avoidbigbro.com/donate/

You can support me on Ko-Fi by giving me a tip: https://ko-fi.com/avoidbigbro

I have dropped the pitch of my voice for the videos and use the alias of Brian Bladen for privacy reasons. I am also paranoid of being hacked!

FREE TRAINING on our website at https://avoidbigbro.com/lp-courses/

My available books/ebooks on Amazon 'Covert Techniques' a guide about privacy and how to avoid surveillance. 'Operation Aurelius' a fictional novel. 'The Bear Roars' my research on Russian state-sponsored APT groups. Author Brian Bladen ... https://www.youtube.com/watch?v=ZMy_ngGh1uI