Overview

overview

10

Static

static

10

2025-04-07...er.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-04-07_44f8477b1d57d322db73f743196199d1_black-basta_coinminer_ryuk_sliver

  • Size

    3.3MB

  • Sample

    250407-ght3zstjw4

  • MD5

    44f8477b1d57d322db73f743196199d1

  • SHA1

    e89b6960d9663b2ad2e31f5702dd4c99c431a477

  • SHA256

    c5f1095f4a60ba3d3b5ad0efc4ec70572aba4ba778ac45a10af22baf92e40eb4

  • SHA512

    1737dc2c50f827e8a6748b5011bd4cec09c1b0caf3693828b0c4cd51174cbf0356ce941ba392761c30382a842bb832fe70241a58bb0cb7370feeb95adf73f70a

  • SSDEEP

    49152:QX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85Q5:QlRsZ47/QXoHUOfAoj1x65

Score
10/10
meshagentlevel 11

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

LEVEL 11

C2

http://meshcentral.int.myeg.com.my:443/agent.ashx

Attributes
  • mesh_id

    0x267E203356DF83C53CA73EE1980DF5A31E1B74F750694DA56D293B4F6383242832B18E9BF94DF07CAB4380858A89F60F

  • server_id

    14988BFAF0BCF70BD6B18D8AE99D66FC06A02D3618DABF6DFB37BCF8C0B0D8E9479EC17202B333699B5A5AD93A5F30A4

  • wss

    wss://meshcentral.int.myeg.com.my:443/agent.ashx

Targets

    • Target

      2025-04-07_44f8477b1d57d322db73f743196199d1_black-basta_coinminer_ryuk_sliver

    • Size

      3.3MB

    • MD5

      44f8477b1d57d322db73f743196199d1

    • SHA1

      e89b6960d9663b2ad2e31f5702dd4c99c431a477

    • SHA256

      c5f1095f4a60ba3d3b5ad0efc4ec70572aba4ba778ac45a10af22baf92e40eb4

    • SHA512

      1737dc2c50f827e8a6748b5011bd4cec09c1b0caf3693828b0c4cd51174cbf0356ce941ba392761c30382a842bb832fe70241a58bb0cb7370feeb95adf73f70a

    • SSDEEP

      49152:QX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85Q5:QlRsZ47/QXoHUOfAoj1x65

    Score
    1/10
    behavioral1

MITRE ATT&CK Matrix

Tasks