Overview

overview

10

Static

static

10

2025-03-07...er.exe

windows7-x64

1

2025-03-07...er.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-03-07_67c0fdaae68ec9c08d30d46b1556912b_ismagent_ryuk_sliver

  • Size

    3.3MB

  • Sample

    250307-lkvjraynv6

  • MD5

    67c0fdaae68ec9c08d30d46b1556912b

  • SHA1

    14d958085bf23f48d908bb637ff57334f252bcaa

  • SHA256

    e8e56ad68635678c9f961f9c0e6c463b3536c35d07f35e72ad0da9f45b0e14ef

  • SHA512

    1ef0b53bf186f25ee03d81f67b592c20e4aa51818180c2cfc2aa86407e37ceb6cd6a577285fb42f4f85dd52ce338343ff86ca92cd53d91b7b94cd18a0d2e8d6c

  • SSDEEP

    49152:MX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85QE:MlRsZ47/QXoHUOfAoj1x6E

Score
10/10
meshagenthome

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

Home

Attributes
  • mesh_id

    0xDFB4804BE581094B8EE1D140F4411A4DF33D84F930C01EE4EE92B582400240814D5E674E8B0AFA540DCD553A2659290E

  • server_id

    1E4BE58761B66DEE998399238DDE00328F823879E650A24E8318531BEDDEC9AFCE9030F8FAA249661CB28CF5385443FA

  • wss

    localhost

Targets

    • Target

      2025-03-07_67c0fdaae68ec9c08d30d46b1556912b_ismagent_ryuk_sliver

    • Size

      3.3MB

    • MD5

      67c0fdaae68ec9c08d30d46b1556912b

    • SHA1

      14d958085bf23f48d908bb637ff57334f252bcaa

    • SHA256

      e8e56ad68635678c9f961f9c0e6c463b3536c35d07f35e72ad0da9f45b0e14ef

    • SHA512

      1ef0b53bf186f25ee03d81f67b592c20e4aa51818180c2cfc2aa86407e37ceb6cd6a577285fb42f4f85dd52ce338343ff86ca92cd53d91b7b94cd18a0d2e8d6c

    • SSDEEP

      49152:MX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85QE:MlRsZ47/QXoHUOfAoj1x6E

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks