General

  • Target

    2024-10-07_055266407042bb0d5121ef5375f7ca99_ryuk

  • Size

    2.1MB

  • MD5

    055266407042bb0d5121ef5375f7ca99

  • SHA1

    fc765c68ee2a7c12267ed40b5e151f15ec92b4d8

  • SHA256

    988293f20cc427d98b76f22bda80bc38458065a0846777c4aa61c5fe2ba392c1

  • SHA512

    5552a162211ef26cbd224ddf2492a27523d86d1ee865edaa128ab848ed885545564f18096160814aae08d71dec7ff1db37caa2c8604827efae4a4852821c4ca6

  • SSDEEP

    49152:/m+4kMUMUfgyzbZVuw7HMIWpDLv+wlVp6k2yjcU0FXPCN/mRi:ZhffgkbeZDLVlh2Yd/mRi

Score
10/10

Malware Config

Signatures

  • Detects MeshAgent payload 1 IoCs
  • Meshagent family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-10-07_055266407042bb0d5121ef5375f7ca99_ryuk
    .exe windows:6 windows x64 arch:x64

    8d696c76e26a7f89ddba1e2dba041414


    Headers

    Imports

    Sections