General
-
Target
2024-10-02_0262a2cfe6b45110ce50f94340c1a53e_ryuk_sliver
-
Size
3.3MB
-
Sample
241002-ttmt9szama
-
MD5
0262a2cfe6b45110ce50f94340c1a53e
-
SHA1
d958f0211c043ee165ef35a5ed51030b09665c2c
-
SHA256
2169341de3ef549f9af76cf0964196226d78f6821197352db3bc83adeb4b025a
-
SHA512
1c346cdd700fdf233d7fd71be982da5937414bd52ba82a78aaf35bbf5818b8501de71ba17dace2cf5fee7a1799f1e4969439323f812b5c70a5e14076308b46f8
-
SSDEEP
49152:5X3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQet5o:5lRsZ47/QXoHUOfAoj14W
Behavioral task
behavioral1
Sample
2024-10-02_0262a2cfe6b45110ce50f94340c1a53e_ryuk_sliver.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
2024-10-02_0262a2cfe6b45110ce50f94340c1a53e_ryuk_sliver.exe
Resource
win10v2004-20240802-en
Malware Config
Extracted
meshagent
2
robin
http://exam.webipv.com:443/agent.ashx
-
mesh_id
0x382C0DCF945669BFC685AF8EA9F64433CE7F4310090E99F518EB42E95EE0100E17A121155CB98D7C24043265472748BF
-
server_id
C548A56198204AA58B1B935B7C94DEC937F526F4D95BA9A934173D49C789C88C656BEC078BE602DD32033D07A44BF5E2
-
wss
wss://exam.webipv.com:443/agent.ashx
Targets
-
-
Target
2024-10-02_0262a2cfe6b45110ce50f94340c1a53e_ryuk_sliver
-
Size
3.3MB
-
MD5
0262a2cfe6b45110ce50f94340c1a53e
-
SHA1
d958f0211c043ee165ef35a5ed51030b09665c2c
-
SHA256
2169341de3ef549f9af76cf0964196226d78f6821197352db3bc83adeb4b025a
-
SHA512
1c346cdd700fdf233d7fd71be982da5937414bd52ba82a78aaf35bbf5818b8501de71ba17dace2cf5fee7a1799f1e4969439323f812b5c70a5e14076308b46f8
-
SSDEEP
49152:5X3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQet5o:5lRsZ47/QXoHUOfAoj14W
Score1/10 -