Overview

overview

10

Static

static

10

4ecec027e6...f6.exe

windows7-x64

1

4ecec027e6...f6.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4ecec027e6d792ca054809bab915d600c9646c6a11e5884ab06eddeb9937d6f6.exe

  • Size

    3.3MB

  • Sample

    250104-dj36hazpgm

  • MD5

    0069ce583643334dc0914345291057d4

  • SHA1

    93ff3e5fabe42080c449169901cfcfd9df0d312a

  • SHA256

    4ecec027e6d792ca054809bab915d600c9646c6a11e5884ab06eddeb9937d6f6

  • SHA512

    b0cf96ee3c4b71e2812e4246bb0ed013bbe29304688024c0f813cf95b15a9d2b3cfbd3ce090bc2b0cd10ad1d161841159668f69c9df64ee3a5d7af0d235ca8a1

  • SSDEEP

    49152:vX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85Qn:vlRsZ47/QXoHUOfAoj1x6n

Score
10/10
meshagent111

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

111

C2

http://46.175.167.116:444/agent.ashx

Attributes
  • mesh_id

    0xA12A7C664B497CD4C929099C38B8DCAAF92DF97734F0FDEF31ECAA80D3A2C22FBE1FA3A048C0212E384DE1F8A9CC2185

  • server_id

    C710E9869C5983A0452483FB1633CA857EEB00ACBE0D0104E0A1CF4E19C677249DC82403254B3AC2DAF0684D2B9C7D93

  • wss

    wss://46.175.167.116:444/agent.ashx

Targets

    • Target

      4ecec027e6d792ca054809bab915d600c9646c6a11e5884ab06eddeb9937d6f6.exe

    • Size

      3.3MB

    • MD5

      0069ce583643334dc0914345291057d4

    • SHA1

      93ff3e5fabe42080c449169901cfcfd9df0d312a

    • SHA256

      4ecec027e6d792ca054809bab915d600c9646c6a11e5884ab06eddeb9937d6f6

    • SHA512

      b0cf96ee3c4b71e2812e4246bb0ed013bbe29304688024c0f813cf95b15a9d2b3cfbd3ce090bc2b0cd10ad1d161841159668f69c9df64ee3a5d7af0d235ca8a1

    • SSDEEP

      49152:vX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85Qn:vlRsZ47/QXoHUOfAoj1x6n

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks