Overview

overview

10

Static

static

10

2025-01-23...er.exe

windows7-x64

1

2025-01-23...er.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-01-23_4e29ce1009346b8afde10f65febb670a_ismagent_ryuk_sliver

  • Size

    3.3MB

  • Sample

    250123-zaangstmgm

  • MD5

    4e29ce1009346b8afde10f65febb670a

  • SHA1

    b954651323e61c8227d76d58411fd4ef198b4d26

  • SHA256

    7f2e5f479f82e2cc2497f5254c927c5a31fd3f540eb0ce867980c3800f28415d

  • SHA512

    48094413d85bd9a2ac0c5fb488557df0ba54d77ba79b5510bc3796ede2237d9a73c9b4309ece701df77ffad1781323d43fbbec4127909343d54b2d05efb2d09e

  • SSDEEP

    49152:aX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85QJ:alRsZ47/QXoHUOfAoj1x6J

Score
10/10
meshagentmy pcs

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

My PCs

Attributes
  • mesh_id

    0xA77D9CB247ACF606761FB37BD919A508E1503B1CC955903374339C721BC0BDAA053ABF770EA0B41F61A2AB7ADF71DC9A

  • server_id

    9711BC70BFF78A40BB09DA4BA5201088BCC9AE232A068A3364D02DDCD92DCEB5748FC603CC2CB7444285B778FC9ABB0B

  • wss

    localhost

Targets

    • Target

      2025-01-23_4e29ce1009346b8afde10f65febb670a_ismagent_ryuk_sliver

    • Size

      3.3MB

    • MD5

      4e29ce1009346b8afde10f65febb670a

    • SHA1

      b954651323e61c8227d76d58411fd4ef198b4d26

    • SHA256

      7f2e5f479f82e2cc2497f5254c927c5a31fd3f540eb0ce867980c3800f28415d

    • SHA512

      48094413d85bd9a2ac0c5fb488557df0ba54d77ba79b5510bc3796ede2237d9a73c9b4309ece701df77ffad1781323d43fbbec4127909343d54b2d05efb2d09e

    • SSDEEP

      49152:aX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85QJ:alRsZ47/QXoHUOfAoj1x6J

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks