General
-
Target
2024-10-09_5c570a494f8d3568d8d37780f7708c9a_ryuk_sliver
-
Size
3.3MB
-
Sample
241009-rgrata1bpd
-
MD5
5c570a494f8d3568d8d37780f7708c9a
-
SHA1
55aaaeaca89a5182dd3bc4c5f1c106d36bc3b671
-
SHA256
712d101d95dd099ecacd024055eea9fe32e9c38626c78970d9a7fe27725e0b76
-
SHA512
6e7fb53210f65b6271b8dcbb18ccee647d233df9d84a5325bb57cbe35f3304706808b11c0c30a8f12cec3bc794f371faead5ce21b5273078b2ccb762543148e2
-
SSDEEP
49152:1X3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85Q2:1lRsZ47/QXoHUOfAoj1x62
Behavioral task
behavioral1
Sample
2024-10-09_5c570a494f8d3568d8d37780f7708c9a_ryuk_sliver.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
2024-10-09_5c570a494f8d3568d8d37780f7708c9a_ryuk_sliver.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
meshagent
2
system-cmd
http://meshcentral.yskszk.pw:444/agent.ashx
-
mesh_id
0xD4AB45895D3B612859C027473888D94271B4185F12AC89D8340724CBB57232A7D45E0239811DDBFD1BBC78C3C4178318
-
server_id
E3AFDDD1251A6BBABD3F6C1A441F031B137C960B95F4F699C85E90D7D4654CB1272AA6F585086553F4E70FE494F4082A
-
wss
wss://meshcentral.yskszk.pw:444/agent.ashx
Targets
-
-
Target
2024-10-09_5c570a494f8d3568d8d37780f7708c9a_ryuk_sliver
-
Size
3.3MB
-
MD5
5c570a494f8d3568d8d37780f7708c9a
-
SHA1
55aaaeaca89a5182dd3bc4c5f1c106d36bc3b671
-
SHA256
712d101d95dd099ecacd024055eea9fe32e9c38626c78970d9a7fe27725e0b76
-
SHA512
6e7fb53210f65b6271b8dcbb18ccee647d233df9d84a5325bb57cbe35f3304706808b11c0c30a8f12cec3bc794f371faead5ce21b5273078b2ccb762543148e2
-
SSDEEP
49152:1X3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85Q2:1lRsZ47/QXoHUOfAoj1x62
Score1/10 -