Amadey - APT-C-36

Amadey - APT-C-36 is a blue team lab that falls under the Endpoint Forensics category and will cover the following subjects: Volatility 3, Execution, Persistence, Privilege Escalation, Defense Evasion, Command and Control, Exfiltration.

Learning Objectives

Reconstruct Amadey Trojan behavior by analyzing memory dumps with Volatility3 to identify malicious processes, C2 communications, payload delivery, and persistence mechanisms.

Categories: Endpoint Forensics.

MITRE ATT&CK Tactics: Execution, Persistence, Privilege Escalation, Defense Evasion, Command and Control, Exfiltration.

Tools: Volatility 3.

Difficulty: medium.