General
-
Target
2024-09-27_3483d00e577df91bb0de9b19b6517f32_ryuk_sliver
-
Size
3.3MB
-
Sample
240927-vnl68avdmf
-
MD5
3483d00e577df91bb0de9b19b6517f32
-
SHA1
b0ebd180726c39e852117a89f8cac915b91f4293
-
SHA256
92f19329ecd0497ffd4faeedd4b32315df9aa4ec4d00dd5e21920d04f7d2aef5
-
SHA512
72b2402a74c941947e67be59696a618017a7a5ba560377190a961fbcd84a61ce89d0b6861f70f0847541ba9a12be166b8dc03209df6a04e5160cd296eb789729
-
SSDEEP
49152:Mf708gNcR9l5NyQB7q1AlgraPgDLDVXI2RXgGfX2kMFvfAw6dZ7Nueuxg5A3:M+49lnyeG3D56gXm6Hq3
Behavioral task
behavioral1
Sample
2024-09-27_3483d00e577df91bb0de9b19b6517f32_ryuk_sliver.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
2024-09-27_3483d00e577df91bb0de9b19b6517f32_ryuk_sliver.exe
Resource
win10v2004-20240802-en
Malware Config
Extracted
meshagent
2
ООО "Партнер"
http://meshcent.its.ufanet.ru:443/agent.ashx
-
mesh_id
0xC7A8BC2EAC00CFAA38B210D359E78B3524E4EDCCB5D7B95FD34C8F8694131DDCB2E5DDFD83D6888153B3F8E71AB66A56
-
server_id
92361DD62E17552490F9968C444EAF21618626EC916098B7A27028E3759BECFC00603247A5829F7E5F230D03F82213BF
-
wss
wss://meshcent.its.ufanet.ru:443/agent.ashx
Targets
-
-
Target
2024-09-27_3483d00e577df91bb0de9b19b6517f32_ryuk_sliver
-
Size
3.3MB
-
MD5
3483d00e577df91bb0de9b19b6517f32
-
SHA1
b0ebd180726c39e852117a89f8cac915b91f4293
-
SHA256
92f19329ecd0497ffd4faeedd4b32315df9aa4ec4d00dd5e21920d04f7d2aef5
-
SHA512
72b2402a74c941947e67be59696a618017a7a5ba560377190a961fbcd84a61ce89d0b6861f70f0847541ba9a12be166b8dc03209df6a04e5160cd296eb789729
-
SSDEEP
49152:Mf708gNcR9l5NyQB7q1AlgraPgDLDVXI2RXgGfX2kMFvfAw6dZ7Nueuxg5A3:M+49lnyeG3D56gXm6Hq3
Score1/10 -