General

  • Target

    20240927044f477788212a7b88345cedf2354080ryuksliver

  • Size

    3.2MB

  • Sample

    240927-sada2sxfnm

  • MD5

    044f477788212a7b88345cedf2354080

  • SHA1

    f67c3fbb7224338f87837a755ee188668beb177b

  • SHA256

    edb39015b057b45b83fb704a72f3823a5e7d5de59d0f1dc6b9133ff257f9e752

  • SHA512

    1f754b50889647590941484c22b37edf233fe4c82497c4c2bc974289e942b34b21fe27ac1d7802fa8ab7e9939049d2f22c95a2d493baec380fb4720b78ad8137

  • SSDEEP

    49152:+X3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQen:+lRsZ47/QXoHUOfAoj1c

Score
10/10

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

Certi

C2

http://172.236.171.111:443/agent.ashx

Attributes
  • mesh_id

    0x83DC2E03D3CC69E1F6BA635EE1B9729C85F530972CCE5362B05C9C6EF1A38161338F7C40849549AD8184A4CA16AC400A

  • server_id

    38951BE7A38EAAF4355BAD9DA1059869CD03DC09305D5390D5EA7690C5348D9053A709A8831ECFA95D43AD779793E7D3

  • wss

    wss://172.236.171.111:443/agent.ashx

Targets

    • Target

      20240927044f477788212a7b88345cedf2354080ryuksliver

    • Size

      3.2MB

    • MD5

      044f477788212a7b88345cedf2354080

    • SHA1

      f67c3fbb7224338f87837a755ee188668beb177b

    • SHA256

      edb39015b057b45b83fb704a72f3823a5e7d5de59d0f1dc6b9133ff257f9e752

    • SHA512

      1f754b50889647590941484c22b37edf233fe4c82497c4c2bc974289e942b34b21fe27ac1d7802fa8ab7e9939049d2f22c95a2d493baec380fb4720b78ad8137

    • SSDEEP

      49152:+X3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQen:+lRsZ47/QXoHUOfAoj1c

    Score
    1/10

MITRE ATT&CK Matrix

Tasks