meshagent | 9cd9ce008d9c922374d5c11ba2460ddbede0730de435e4d307e76f957b363946 | Triage

Sharing

General

Target

9cd9ce008d9c922374d5c11ba2460ddbede0730de435e4d307e76f957b363946N.exe
Size

3.3MB
Sample

250208-ldgpbaxqhj
MD5

405332becfab9887737b8a37f99314f0
SHA1

f4e7a1a89ad279914751a02e9b8aa6c6ee8550cd
SHA256

9cd9ce008d9c922374d5c11ba2460ddbede0730de435e4d307e76f957b363946
SHA512

4b3ddb565557bcd9e5759f550566258b3be379e0c9d092f4cb694a576ba7ab29571175d0012487bbc0e0d97358cdb1f82b8a7f062fd833fab005e4d4ee2f5bbd
SSDEEP

49152:sX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85QG:slRsZ47/QXoHUOfAoj1x6G

Score

10^/10

meshagent pc discovery

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

PC

Attributes

mesh_id
0x7A45E23863D6150D121FCE68BA8874E3C83F87FF33B28774D30452A62E648FF2DF045C108D1CE369B8001BE65AB79195
server_id
9FD1AFC9F3B99A9221F72A3D4994257A7F21416091E7A622D9B757787E5BF40D3D42C449A5BD7E9D2487D015E208B2F3
wss
localhost

Targets

- Target
  
  9cd9ce008d9c922374d5c11ba2460ddbede0730de435e4d307e76f957b363946N.exe
- Size
  
  3.3MB
- MD5
  
  405332becfab9887737b8a37f99314f0
- SHA1
  
  f4e7a1a89ad279914751a02e9b8aa6c6ee8550cd
- SHA256
  
  9cd9ce008d9c922374d5c11ba2460ddbede0730de435e4d307e76f957b363946
- SHA512
  
  4b3ddb565557bcd9e5759f550566258b3be379e0c9d092f4cb694a576ba7ab29571175d0012487bbc0e0d97358cdb1f82b8a7f062fd833fab005e4d4ee2f5bbd
- SSDEEP
  
  49152:sX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85QG:slRsZ47/QXoHUOfAoj1x6G
Score

8^/10

discovery
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2