Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2025-03-19...er.exe

windows7-x64

1

2025-03-19...er.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-03-19_c23cc76d70b549cb107a50ac4a9cbe78_coinminer_ismagent_ryuk_sliver

  • Size

    3.3MB

  • Sample

    250319-nc2zzazjs7

  • MD5

    c23cc76d70b549cb107a50ac4a9cbe78

  • SHA1

    84310fdc7e9523f507b1c1a3115a61ca086ba44e

  • SHA256

    1b317c983d7f7c64f3300eff56f975d4194c07392a3ac62fa6be1b2a31ab5831

  • SHA512

    3ab76807fc08ec52e72f42fa1ff64bbfb7f877782fbadcf6f744d0a840ff08205689dd8ff9281e807f5bb0335d7e69b6e2cd05a5ccbfd9443cfe5ad4123fbdd0

  • SSDEEP

    49152:oX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85Qc:olRsZ47/QXoHUOfAoj1x6c

Score
10/10
meshagentdsin-mines-albi

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

dsin-mines-albi

C2

http://meshcentral-dsin.mines-albi.fr:443/agent.ashx

Attributes
  • mesh_id

    0xA07E6E8F956A53FA8C2541A573279B0264E2E36B265D2D4D82E8F99617AF20F005AF43F0D0301D4388779898005A382A

  • server_id

    3D99E2CAD9E3E191755F28DAF4ABCC10D56A27F78BF671B978EC9AC66AB77C38E429ECDCB5B65FB03925F4292C0C4805

  • wss

    wss://meshcentral-dsin.mines-albi.fr:443/agent.ashx

Targets

    • Target

      2025-03-19_c23cc76d70b549cb107a50ac4a9cbe78_coinminer_ismagent_ryuk_sliver

    • Size

      3.3MB

    • MD5

      c23cc76d70b549cb107a50ac4a9cbe78

    • SHA1

      84310fdc7e9523f507b1c1a3115a61ca086ba44e

    • SHA256

      1b317c983d7f7c64f3300eff56f975d4194c07392a3ac62fa6be1b2a31ab5831

    • SHA512

      3ab76807fc08ec52e72f42fa1ff64bbfb7f877782fbadcf6f744d0a840ff08205689dd8ff9281e807f5bb0335d7e69b6e2cd05a5ccbfd9443cfe5ad4123fbdd0

    • SSDEEP

      49152:oX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85Qc:olRsZ47/QXoHUOfAoj1x6c

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks