General
-
Target
2024-10-12_8353325c57d4cdcdbfb808089312e880_ryuk_sliver
-
Size
3.3MB
-
Sample
241012-lqn9xsyenq
-
MD5
8353325c57d4cdcdbfb808089312e880
-
SHA1
6a5c7943036712089afb365818cb9fce1d53e5f5
-
SHA256
47d9aba3624e2f41f1c64f145973cfd61840070ff2c106d8c21d4fd7ae5756c9
-
SHA512
45a713f99b230ff54b60c38bb5e3c8e6ad52a545a6ac717279fb1e94d9cd792cc8a5de87f988dc7427447f4856d77e9e024045ab8d467499aeb5985eeaa3e02f
-
SSDEEP
49152:aX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe55E:alRsZ47/QXoHUOfAoj1wW
Behavioral task
behavioral1
Sample
2024-10-12_8353325c57d4cdcdbfb808089312e880_ryuk_sliver.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
2024-10-12_8353325c57d4cdcdbfb808089312e880_ryuk_sliver.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
meshagent
2
Ram
http://4.194.112.204:443/agent.ashx
-
mesh_id
0x7B43818715A1240C1315A3B846CD29D96AE78F366105880D3EB45E95D8C574DAEFBB19AE9CDCE83C0DFCB5C5B8CDD232
-
server_id
B2F7AB801B22806A9B2AF5490CA635FD87D6095212C40CA1F33BF35F4E56CA5D4D22BB43FD8B174C5495D352E63768B3
-
wss
wss://4.194.112.204:443/agent.ashx
Targets
-
-
Target
2024-10-12_8353325c57d4cdcdbfb808089312e880_ryuk_sliver
-
Size
3.3MB
-
MD5
8353325c57d4cdcdbfb808089312e880
-
SHA1
6a5c7943036712089afb365818cb9fce1d53e5f5
-
SHA256
47d9aba3624e2f41f1c64f145973cfd61840070ff2c106d8c21d4fd7ae5756c9
-
SHA512
45a713f99b230ff54b60c38bb5e3c8e6ad52a545a6ac717279fb1e94d9cd792cc8a5de87f988dc7427447f4856d77e9e024045ab8d467499aeb5985eeaa3e02f
-
SSDEEP
49152:aX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe55E:alRsZ47/QXoHUOfAoj1wW
Score1/10 -