Overview

overview

10

Static

static

10

b1fbc8816a...eN.exe

windows7-x64

1

b1fbc8816a...eN.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b1fbc8816ad803393f3204de4bb3160351064af272cd3540104e3b7e97868b7eN

  • Size

    3.3MB

  • Sample

    241025-19d1mawhrk

  • MD5

    21711f52ee864500f4901aa3aa115c70

  • SHA1

    ae26c0d903a8f986296d5f3aef3b07ed6eefa0f9

  • SHA256

    b1fbc8816ad803393f3204de4bb3160351064af272cd3540104e3b7e97868b7e

  • SHA512

    4cefed8f45b4c945c613ee4c2856b63c53e4d2521f27fa62d3a10d35b0d92a8f02741aeedae729eb01b840fc1f6f1e643d2947398c5c2314b699fd8a2a41d99b

  • SSDEEP

    49152:IX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQet5e:IlRsZ47/QXoHUOfAoj14E

Score
10/10
meshagentonline

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

Online

C2

http://remoteshare.in:443/agent.ashx

Attributes
  • mesh_id

    0x59E7FE2099E6D66CFD67A530A1F4BC702C7E18BCB7B749DE69E43FDF755EC233F829189089F4E91083F0FC605EA7EC65

  • server_id

    C548A56198204AA58B1B935B7C94DEC937F526F4D95BA9A934173D49C789C88C656BEC078BE602DD32033D07A44BF5E2

  • wss

    wss://remoteshare.in:443/agent.ashx

Targets

    • Target

      b1fbc8816ad803393f3204de4bb3160351064af272cd3540104e3b7e97868b7eN

    • Size

      3.3MB

    • MD5

      21711f52ee864500f4901aa3aa115c70

    • SHA1

      ae26c0d903a8f986296d5f3aef3b07ed6eefa0f9

    • SHA256

      b1fbc8816ad803393f3204de4bb3160351064af272cd3540104e3b7e97868b7e

    • SHA512

      4cefed8f45b4c945c613ee4c2856b63c53e4d2521f27fa62d3a10d35b0d92a8f02741aeedae729eb01b840fc1f6f1e643d2947398c5c2314b699fd8a2a41d99b

    • SSDEEP

      49152:IX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQet5e:IlRsZ47/QXoHUOfAoj14E

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks