General

  • Target

    2025-03-31_55d5db43ae087220b3dca470df23a0b5_black-basta_coinminer_ryuk_sliver

  • Size

    3.3MB

  • Sample

    250331-bdhaqszvhy

  • MD5

    55d5db43ae087220b3dca470df23a0b5

  • SHA1

    fed4b378550c3a1718b6abf6e0d2a064ae262dad

  • SHA256

    ad13416dcefbfe1ef2bdf326b9107ca725fa298d5d5331bb3144e24bd8ecab5e

  • SHA512

    f360530f88c2e469660d268dd340e1423267ac43b06d3222ee2682ccb7518246c6d9bee4b94536eab7ef394bd2f9c9fa9ddf688c89999fc65aae840226ce9fbf

  • SSDEEP

    49152:+X3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85QT:+lRsZ47/QXoHUOfAoj1x6T

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

Спутники

C2

http://mesh.elsi-group.ru:443/agent.ashx

Attributes
  • mesh_id

    0x265BE376954CEDCD254F05CCD24DEE5FFB8D77A6BB077F388B82DBC298F1598820B89FEF74971DF51E9B4BE6E573F031

  • server_id

    DC3FB0B090C28836BE40DA77FCBD4DFD389AAAC6F673554BA9A165B6FD4E8E2CA3C629BBB88965B4F1F0C9131DD96961

  • wss

    wss://mesh.elsi-group.ru:443/agent.ashx

Targets

    • Target

      2025-03-31_55d5db43ae087220b3dca470df23a0b5_black-basta_coinminer_ryuk_sliver

    • Size

      3.3MB

    • MD5

      55d5db43ae087220b3dca470df23a0b5

    • SHA1

      fed4b378550c3a1718b6abf6e0d2a064ae262dad

    • SHA256

      ad13416dcefbfe1ef2bdf326b9107ca725fa298d5d5331bb3144e24bd8ecab5e

    • SHA512

      f360530f88c2e469660d268dd340e1423267ac43b06d3222ee2682ccb7518246c6d9bee4b94536eab7ef394bd2f9c9fa9ddf688c89999fc65aae840226ce9fbf

    • SSDEEP

      49152:+X3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85QT:+lRsZ47/QXoHUOfAoj1x6T

    Score
    1/10

MITRE ATT&CK Matrix

Tasks