General
-
Target
2024-10-15_890a8b4eb8315a5fd443d15750f10d05_ryuk_sliver
-
Size
3.3MB
-
Sample
241015-cn1eqsshnj
-
MD5
890a8b4eb8315a5fd443d15750f10d05
-
SHA1
b0a55b2973c5260799e7c1baf62020e2594f1e96
-
SHA256
53d0032928460340a8cb22c67662da8df498a31004ebd97ad91ff358a3c78bd0
-
SHA512
621ecb9ecdc21f04a48d3af608313be9dee8b327a32d431b886d3ada7b24b0e13594950068efae6547c87e771f3a21d6ecd47b222957f1fc2730c2cf891c57ac
-
SSDEEP
49152:GX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85Qy:GlRsZ47/QXoHUOfAoj1x6y
Behavioral task
behavioral1
Sample
2024-10-15_890a8b4eb8315a5fd443d15750f10d05_ryuk_sliver.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
2024-10-15_890a8b4eb8315a5fd443d15750f10d05_ryuk_sliver.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
meshagent
2
TacticalRMM
http://mesh.golden9ine.com:443/agent.ashx
-
mesh_id
0xEA78AEAE55808B865A9C391FE30E864BF999ABE7C9922661A6F7B3E8F3E576EAE447E62C685CAA33E1A0C5A8930D2A9A
-
server_id
2312E6BFD45A8F95C0EA1F57EF35B9AC829501E0AAC9A43D5D61184CB20D8054BFAE1CD803F9AB8B14690E62EA816A8D
-
wss
wss://mesh.golden9ine.com:443/agent.ashx
Targets
-
-
Target
2024-10-15_890a8b4eb8315a5fd443d15750f10d05_ryuk_sliver
-
Size
3.3MB
-
MD5
890a8b4eb8315a5fd443d15750f10d05
-
SHA1
b0a55b2973c5260799e7c1baf62020e2594f1e96
-
SHA256
53d0032928460340a8cb22c67662da8df498a31004ebd97ad91ff358a3c78bd0
-
SHA512
621ecb9ecdc21f04a48d3af608313be9dee8b327a32d431b886d3ada7b24b0e13594950068efae6547c87e771f3a21d6ecd47b222957f1fc2730c2cf891c57ac
-
SSDEEP
49152:GX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85Qy:GlRsZ47/QXoHUOfAoj1x6y
Score1/10 -