General

  • Target

    2025-04-01_898b0b351cfadc67cdbf8f015f5fb7e5_black-basta_coinminer_ryuk_sliver

  • Size

    3.3MB

  • Sample

    250401-wxc6catvd1

  • MD5

    898b0b351cfadc67cdbf8f015f5fb7e5

  • SHA1

    41e2709524e15389b582082c1d23f10932508a06

  • SHA256

    a51de37348371ac209c956479deda54aa7eb69d66e580ad97996713c80b6c0f3

  • SHA512

    19be1929b83aea6a5c8ae1e6abf2910afafa879509a8a9640b42651d8211a93793143c5dbeb8dca7ad470a64bf82576ab77d1f674ead16dbe10c2fb3b0da0cb1

  • SSDEEP

    49152:wdZEy2B6vflQf6X8uZQoy3vR6QVQy5Z+bm4M/HMFvfGW0/7Z7Ib3jxw5bl:EHvfGfZvZj1/N/z/owJl

Score
10/10

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

CTE

Attributes
  • mesh_id

    0x931F3BB1BAA23158DD64AB86BF49CBF81A80728D5A02C1CE04E62F7D1FB0040809E34CDC5198B6762E33110D1D32409C

  • server_id

    F80C9D4C7040257F7622545A543BB91D61CF8C7EF099297D26C29A830A9B61CB8261AE908EB34483818747ECFB04A5C6

  • wss

    localhost

Targets

    • Target

      2025-04-01_898b0b351cfadc67cdbf8f015f5fb7e5_black-basta_coinminer_ryuk_sliver

    • Size

      3.3MB

    • MD5

      898b0b351cfadc67cdbf8f015f5fb7e5

    • SHA1

      41e2709524e15389b582082c1d23f10932508a06

    • SHA256

      a51de37348371ac209c956479deda54aa7eb69d66e580ad97996713c80b6c0f3

    • SHA512

      19be1929b83aea6a5c8ae1e6abf2910afafa879509a8a9640b42651d8211a93793143c5dbeb8dca7ad470a64bf82576ab77d1f674ead16dbe10c2fb3b0da0cb1

    • SSDEEP

      49152:wdZEy2B6vflQf6X8uZQoy3vR6QVQy5Z+bm4M/HMFvfGW0/7Z7Ib3jxw5bl:EHvfGfZvZj1/N/z/owJl

    Score
    1/10

MITRE ATT&CK Matrix

Tasks