Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

2025-03-24...er.exe

windows7-x64

1

2025-03-24...er.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-03-24_4ef3b4c519ca0a24f26ba640a9f24ae7_coinminer_ismagent_ryuk_sliver

  • Size

    3.3MB

  • Sample

    250324-s5qjvswjt3

  • MD5

    4ef3b4c519ca0a24f26ba640a9f24ae7

  • SHA1

    8a6254ca32af1e187b5abb3bb856cb8280659dc2

  • SHA256

    83f07790fa75755362d8bd23f6774f83b9ca5fbadc5944777271f43b9d4dfce3

  • SHA512

    e4338d75a777b48d3115db569d80604b290f7843bbce0c893b6abe51febc6a7f3955e00cdfcfaea6aaee7fc7cb31566cb3e077d9904c2f7172537ef3885bbc11

  • SSDEEP

    49152:rX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85Q6:rlRsZ47/QXoHUOfAoj1x66

Score
10/10
meshagent11 - crou - batiment j - personnel

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

11 - Crou - Batiment J - Personnel

C2

http://meshcentral.mines-ales.fr:443/agent.ashx

Attributes
  • mesh_id

    0x7C001D0D476027EC13F04C9D0C54F4D951D2A20BC47A2D110EA2F3BCA22AA992FEC5CC38FF53F651785CF7980991F70F

  • server_id

    175C41AA52F8FD7A243FB1660CF1C07133842DE99A41F32D894277478AADD03C3DBB81E76DB68494689B9143632C83C7

  • wss

    wss://meshcentral.mines-ales.fr:443/agent.ashx

Targets

    • Target

      2025-03-24_4ef3b4c519ca0a24f26ba640a9f24ae7_coinminer_ismagent_ryuk_sliver

    • Size

      3.3MB

    • MD5

      4ef3b4c519ca0a24f26ba640a9f24ae7

    • SHA1

      8a6254ca32af1e187b5abb3bb856cb8280659dc2

    • SHA256

      83f07790fa75755362d8bd23f6774f83b9ca5fbadc5944777271f43b9d4dfce3

    • SHA512

      e4338d75a777b48d3115db569d80604b290f7843bbce0c893b6abe51febc6a7f3955e00cdfcfaea6aaee7fc7cb31566cb3e077d9904c2f7172537ef3885bbc11

    • SSDEEP

      49152:rX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85Q6:rlRsZ47/QXoHUOfAoj1x66

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks