General

  • Target

    meshagent32-mesh.exe

  • Size

    3.7MB

  • Sample

    241014-yd535asfrb

  • MD5

    546157d9f4974c5b9871be88d6814a3e

  • SHA1

    8fa936396bca1454aa4bb8f8767394ca25763383

  • SHA256

    c9fb879ceee5d354d2f773a565f7a537cb71733ea79dce8763a819774c64304c

  • SHA512

    8369d845ecd5670abc2d257e9a794bf59c771f1496b8ae6a74d0987c25152483cf0ca15710bbf087c6aa816700b6a8774e4dd7744b91256e2f54094b65271117

  • SSDEEP

    49152:r8o8bZjyJVD0s9Mr3XIfRviWkgEOaxfCbCMcXGtSgvZPOQ5Qx:r8o8VOUs9joRbMc2tSW6x

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

mesh

C2

http://193.233.254.155:443/agent.ashx

Attributes
  • mesh_id

    0xD9CBA773EB49F74D5DABA4D43F3553F846F47B01B47CDD4C03D349CC25D5D8595D28A5132C0D736A71CAA6079D3F8700

  • server_id

    F7DC431B5B41E1CE99722A178D63A58C8EFF78ED9D0459D1A4F66C6FF2521E5769F0DE5B948B611837DDAC9C52EBCA96

  • wss

    wss://193.233.254.155:443/agent.ashx

Targets

    • Target

      meshagent32-mesh.exe

    • Size

      3.7MB

    • MD5

      546157d9f4974c5b9871be88d6814a3e

    • SHA1

      8fa936396bca1454aa4bb8f8767394ca25763383

    • SHA256

      c9fb879ceee5d354d2f773a565f7a537cb71733ea79dce8763a819774c64304c

    • SHA512

      8369d845ecd5670abc2d257e9a794bf59c771f1496b8ae6a74d0987c25152483cf0ca15710bbf087c6aa816700b6a8774e4dd7744b91256e2f54094b65271117

    • SSDEEP

      49152:r8o8bZjyJVD0s9Mr3XIfRviWkgEOaxfCbCMcXGtSgvZPOQ5Qx:r8o8VOUs9joRbMc2tSW6x

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks