Overview

overview

10

Static

static

10

2024-12-12...er.exe

windows7-x64

1

2024-12-12...er.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-12-12_ed13de2c5a74b541bcaa25720abfb636_ismagent_ryuk_sliver

  • Size

    3.3MB

  • Sample

    241212-yy81hswmcv

  • MD5

    ed13de2c5a74b541bcaa25720abfb636

  • SHA1

    bbf69460b7b397a254b6ed8bc4972d30bf60eef0

  • SHA256

    a9f4ccda36e938d14e647b59ea711b689953f0b27166f3ee8fb49836fb2bc08d

  • SHA512

    789d54a103246361d2a7a64ba4f63fa8f04e6cc4edbf915dfd9eaf015e925347ac945819b825d3521c4a24c5ae991e8766d071647432d9cfa4fddff694f4f1a5

  • SSDEEP

    49152:1X3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe/5H:1lRsZ47/QXoHUOfAoj1yJ

Score
10/10
meshagentx86

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

x86

C2

http://Y3Fnr53A42915P4PCeMUbgp1RYnvueqIHPUXzB.displaynvidia.my:443/agent.ashx

Attributes
  • mesh_id

    0x58D4C7CC364E68B8FCCAC28F1E2E6E13885C1D99773D60AB6C8B008A289600620251E1279F23AE8A9648345FD13D2A4B

  • server_id

    523C416D966B99CBFD389CDE22B5DDC708F7BCE00FE4F9BA26B0505EC3E2043577C4B33F2A54FA52C91EAB33ED757AC4

  • wss

    wss://Y3Fnr53A42915P4PCeMUbgp1RYnvueqIHPUXzB.displaynvidia.my:443/agent.ashx

Targets

    • Target

      2024-12-12_ed13de2c5a74b541bcaa25720abfb636_ismagent_ryuk_sliver

    • Size

      3.3MB

    • MD5

      ed13de2c5a74b541bcaa25720abfb636

    • SHA1

      bbf69460b7b397a254b6ed8bc4972d30bf60eef0

    • SHA256

      a9f4ccda36e938d14e647b59ea711b689953f0b27166f3ee8fb49836fb2bc08d

    • SHA512

      789d54a103246361d2a7a64ba4f63fa8f04e6cc4edbf915dfd9eaf015e925347ac945819b825d3521c4a24c5ae991e8766d071647432d9cfa4fddff694f4f1a5

    • SSDEEP

      49152:1X3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe/5H:1lRsZ47/QXoHUOfAoj1yJ

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks