General

  • Target

    2025-03-13_44be2d29f9a13a9dff6ba23d21fcdd7e_coinminer_ismagent_ryuk_sliver

  • Size

    3.3MB

  • Sample

    250313-emykvsvqx7

  • MD5

    44be2d29f9a13a9dff6ba23d21fcdd7e

  • SHA1

    894220fba9b6ef52a326fe6ec79a3cedad93dd42

  • SHA256

    a7a1d944471fe388715e739332708c0e05918a496e1867806342dfd5468bdc87

  • SHA512

    0985a72fbb0471579210d8b5bc2fc5b6e830600fab9d2e35a886171bbbcc0eaebe561571189e11a34e9169b34f42b853630cffb86bf2121c62a426a4551ad086

  • SSDEEP

    49152:2X3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85QO:2lRsZ47/QXoHUOfAoj1x6O

Score
10/10

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

UNCLAIMED

C2

http://mc.onlinecomputers.co.nz:443/agent.ashx

Attributes
  • mesh_id

    0x97D342D4EBDA8E618C93F73A0A43778F249835F8A778DC07274C1FF470D4C020D98A11441F742EC2B6A3CC4B688BFACD

  • server_id

    0A9EB858B3831700321CBB2E74853165D6670E43A6BCB3B46F1401CDB3D8E041AFCE2770FBC5D9FA8964334B40FF945F

  • wss

    wss://mc.onlinecomputers.co.nz:443/agent.ashx

Targets

    • Target

      2025-03-13_44be2d29f9a13a9dff6ba23d21fcdd7e_coinminer_ismagent_ryuk_sliver

    • Size

      3.3MB

    • MD5

      44be2d29f9a13a9dff6ba23d21fcdd7e

    • SHA1

      894220fba9b6ef52a326fe6ec79a3cedad93dd42

    • SHA256

      a7a1d944471fe388715e739332708c0e05918a496e1867806342dfd5468bdc87

    • SHA512

      0985a72fbb0471579210d8b5bc2fc5b6e830600fab9d2e35a886171bbbcc0eaebe561571189e11a34e9169b34f42b853630cffb86bf2121c62a426a4551ad086

    • SSDEEP

      49152:2X3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85QO:2lRsZ47/QXoHUOfAoj1x6O

    Score
    1/10

MITRE ATT&CK Matrix

Tasks