General
-
Target
2024-12-26_f9086f2d3b627199fe2511b1e7ed3882_ismagent_ryuk_sliver
-
Size
3.3MB
-
Sample
241226-pr6gdawkdn
-
MD5
f9086f2d3b627199fe2511b1e7ed3882
-
SHA1
79fd4aa36ef64e1bcfe7723f59355dbd4c176bc9
-
SHA256
ed05bc36ed1f5934eab99877754fc948dbb02a9834b10759bdf74c0980f3c3d7
-
SHA512
4ca8b1ad482f99edd711417dafd76d98a73458499709ceb022e0bc7d20602387b19fcb6d3612a5fa5a92468c2396d34a3e5c7730d1c762e512ba81ba97104935
-
SSDEEP
49152:GX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85QU:GlRsZ47/QXoHUOfAoj1x6U
Behavioral task
behavioral1
Sample
2024-12-26_f9086f2d3b627199fe2511b1e7ed3882_ismagent_ryuk_sliver.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
2024-12-26_f9086f2d3b627199fe2511b1e7ed3882_ismagent_ryuk_sliver.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
meshagent
2
Basra
http://support.alsharaa-dent.com:443/agent.ashx
-
mesh_id
0xB723950885BD53E4B5F770CB6B3CDBF6F21F47B5718C5CB8D2C2F51D2748838F7F9A6EC574ADE357362EC29965D119D3
-
server_id
6194A270578F1AD0161596BDE10800F9CDDF1048B09C1C7EAB58C6E4D018A6A69BFBCCEDED0DB5D2FA27ECE19D5CA7FF
-
wss
wss://support.alsharaa-dent.com:443/agent.ashx
Targets
-
-
Target
2024-12-26_f9086f2d3b627199fe2511b1e7ed3882_ismagent_ryuk_sliver
-
Size
3.3MB
-
MD5
f9086f2d3b627199fe2511b1e7ed3882
-
SHA1
79fd4aa36ef64e1bcfe7723f59355dbd4c176bc9
-
SHA256
ed05bc36ed1f5934eab99877754fc948dbb02a9834b10759bdf74c0980f3c3d7
-
SHA512
4ca8b1ad482f99edd711417dafd76d98a73458499709ceb022e0bc7d20602387b19fcb6d3612a5fa5a92468c2396d34a3e5c7730d1c762e512ba81ba97104935
-
SSDEEP
49152:GX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85QU:GlRsZ47/QXoHUOfAoj1x6U
Score1/10 -