Overview

overview

10

Static

static

10

2025-04-07...er.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-04-07_6059d10b0341f0f6744cd8776e9adff0_black-basta_coinminer_ryuk_sliver

  • Size

    3.3MB

  • Sample

    250407-r6v1assxgw

  • MD5

    6059d10b0341f0f6744cd8776e9adff0

  • SHA1

    251395008a400eb473fbadb237499415e3343154

  • SHA256

    6a457a1079e5bfb8c6a750be3e73ccd3dddf4a651e219bf399a4d51101358177

  • SHA512

    e2a16008b4469b1a074c64dc7261b307a688a21722e2ff28cfc18b2cbb919835ffbb6931516ea5bdea28db87019004254b4618d110dfd2b0ce30423d4ee189bc

  • SSDEEP

    49152:yX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQeD5bz:ylRsZ47/QXoHUOfAoj1O5z

Score
10/10
meshagentidf - biolam lcd - ordinateurs

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

IDF - Biolam LCD - Ordinateurs

C2

http://arthas.biogroup.network:443/agent.ashx

Attributes
  • mesh_id

    0x6138B1E47D90CE2272A2BEF347D797852626A8FA6BA5F0ACC7823AF291E4D9061FAC3622571D8D32BA08C87566EDBA6B

  • server_id

    60FE607AC7B5C4A83F642D4F41F9149F153BEC2008C0EA803F0E9E147A43B8D095415898E2888F68BDCD1345D7FCF9AC

  • wss

    wss://arthas.biogroup.network:443/agent.ashx

Targets

    • Target

      2025-04-07_6059d10b0341f0f6744cd8776e9adff0_black-basta_coinminer_ryuk_sliver

    • Size

      3.3MB

    • MD5

      6059d10b0341f0f6744cd8776e9adff0

    • SHA1

      251395008a400eb473fbadb237499415e3343154

    • SHA256

      6a457a1079e5bfb8c6a750be3e73ccd3dddf4a651e219bf399a4d51101358177

    • SHA512

      e2a16008b4469b1a074c64dc7261b307a688a21722e2ff28cfc18b2cbb919835ffbb6931516ea5bdea28db87019004254b4618d110dfd2b0ce30423d4ee189bc

    • SSDEEP

      49152:yX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQeD5bz:ylRsZ47/QXoHUOfAoj1O5z

    Score
    1/10
    behavioral1

MITRE ATT&CK Matrix

Tasks