General
-
Target
20240927044f477788212a7b88345cedf2354080ryuksliver
-
Size
3.2MB
-
Sample
240927-sada2sxfnm
-
MD5
044f477788212a7b88345cedf2354080
-
SHA1
f67c3fbb7224338f87837a755ee188668beb177b
-
SHA256
edb39015b057b45b83fb704a72f3823a5e7d5de59d0f1dc6b9133ff257f9e752
-
SHA512
1f754b50889647590941484c22b37edf233fe4c82497c4c2bc974289e942b34b21fe27ac1d7802fa8ab7e9939049d2f22c95a2d493baec380fb4720b78ad8137
-
SSDEEP
49152:+X3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQen:+lRsZ47/QXoHUOfAoj1c
Behavioral task
behavioral1
Sample
20240927044f477788212a7b88345cedf2354080ryuksliver.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
20240927044f477788212a7b88345cedf2354080ryuksliver.exe
Resource
win10v2004-20240802-en
Malware Config
Extracted
meshagent
2
Certi
http://172.236.171.111:443/agent.ashx
-
mesh_id
0x83DC2E03D3CC69E1F6BA635EE1B9729C85F530972CCE5362B05C9C6EF1A38161338F7C40849549AD8184A4CA16AC400A
-
server_id
38951BE7A38EAAF4355BAD9DA1059869CD03DC09305D5390D5EA7690C5348D9053A709A8831ECFA95D43AD779793E7D3
-
wss
wss://172.236.171.111:443/agent.ashx
Targets
-
-
Target
20240927044f477788212a7b88345cedf2354080ryuksliver
-
Size
3.2MB
-
MD5
044f477788212a7b88345cedf2354080
-
SHA1
f67c3fbb7224338f87837a755ee188668beb177b
-
SHA256
edb39015b057b45b83fb704a72f3823a5e7d5de59d0f1dc6b9133ff257f9e752
-
SHA512
1f754b50889647590941484c22b37edf233fe4c82497c4c2bc974289e942b34b21fe27ac1d7802fa8ab7e9939049d2f22c95a2d493baec380fb4720b78ad8137
-
SSDEEP
49152:+X3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQen:+lRsZ47/QXoHUOfAoj1c
Score1/10 -