General
-
Target
20240929b1cb2395076794f3e212d093b9e86cfcryuksliver
-
Size
3.3MB
-
Sample
240929-swhsnazbrm
-
MD5
b1cb2395076794f3e212d093b9e86cfc
-
SHA1
a4fb855698d6a76b025fc97b9ec4bdf457ae79fd
-
SHA256
24f1237946d7b5488d5f266250eecdb168e41711f7f5de9ecd23f83c74610a16
-
SHA512
3bdec2d7405afad7656b82ad8010c1a1a4a6782f5b0306717fb46b8e4f06a28ea7034b81917faf4adcfc4a937e1936f5e91a0f010f967fff2116b757b374c87c
-
SSDEEP
49152:RX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85Qc:RlRsZ47/QXoHUOfAoj1x6c
Behavioral task
behavioral1
Sample
20240929b1cb2395076794f3e212d093b9e86cfcryuksliver.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
20240929b1cb2395076794f3e212d093b9e86cfcryuksliver.exe
Resource
win10v2004-20240802-en
Malware Config
Extracted
meshagent
2
TacticalRMM
http://mesh.patricksommer.de:443/agent.ashx
-
mesh_id
0x1585ED4776B8485CC558ED0A1FAD4B5C0D1CE715C0A86409CC004955F049551F452B15EB3AB529D63011CC3436B0D266
-
server_id
103B220B168E786F6452D2368AE3995D6B3A29B11BABA16FB75E8B0C65A5267C5C34F967AB888D033D8EA42E77FA8EEE
-
wss
wss://mesh.patricksommer.de:443/agent.ashx
Targets
-
-
Target
20240929b1cb2395076794f3e212d093b9e86cfcryuksliver
-
Size
3.3MB
-
MD5
b1cb2395076794f3e212d093b9e86cfc
-
SHA1
a4fb855698d6a76b025fc97b9ec4bdf457ae79fd
-
SHA256
24f1237946d7b5488d5f266250eecdb168e41711f7f5de9ecd23f83c74610a16
-
SHA512
3bdec2d7405afad7656b82ad8010c1a1a4a6782f5b0306717fb46b8e4f06a28ea7034b81917faf4adcfc4a937e1936f5e91a0f010f967fff2116b757b374c87c
-
SSDEEP
49152:RX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85Qc:RlRsZ47/QXoHUOfAoj1x6c
Score1/10 -