meshagent | eb1d8f66cb40003d7818776c9a4d097ca889fef181307215adf464057249f8a9 | Triage

Sharing

General

Target

2025-02-17_42369667c4a2208a745144f89c21fd55_ismagent_ryuk_sliver
Size

3.3MB
Sample

250217-1bkqhstlbt
MD5

42369667c4a2208a745144f89c21fd55
SHA1

cc0575e0c42a39aa58a9225df21ea76790aa7f4a
SHA256

eb1d8f66cb40003d7818776c9a4d097ca889fef181307215adf464057249f8a9
SHA512

fbeecd9da7832480dacb3a23a096608d7d2bb5b7c662aa863ea6a0b080a10bc819dd17be522e313cf6910e6989b29f216d0c507ef7380192499566881c216b77
SSDEEP

49152:DX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85Q2:DlRsZ47/QXoHUOfAoj1x62

Score

10^/10

meshagent unassigned

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

UNASSIGNED

C2

http://mesh.mcait.net:443/agent.ashx

Attributes

mesh_id
0x8E2E63517048BB67A7B09CCB99BF7C5BA890ECE5074F0DD92E2D737F1AC2834253169305D640207038F79A495FB0DD60
server_id
685BFF97A9A596554D25324908EB40593075F94C3FC35C6092AD96BD1512E3E782EC64BB8B7236A920682A49F84DC275
wss
wss://mesh.mcait.net:443/agent.ashx

Targets

- Target
  
  2025-02-17_42369667c4a2208a745144f89c21fd55_ismagent_ryuk_sliver
- Size
  
  3.3MB
- MD5
  
  42369667c4a2208a745144f89c21fd55
- SHA1
  
  cc0575e0c42a39aa58a9225df21ea76790aa7f4a
- SHA256
  
  eb1d8f66cb40003d7818776c9a4d097ca889fef181307215adf464057249f8a9
- SHA512
  
  fbeecd9da7832480dacb3a23a096608d7d2bb5b7c662aa863ea6a0b080a10bc819dd17be522e313cf6910e6989b29f216d0c507ef7380192499566881c216b77
- SSDEEP
  
  49152:DX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85Q2:DlRsZ47/QXoHUOfAoj1x62
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

unassignedmeshagent

behavioral1

behavioral2