Overview

overview

10

Static

static

10

2025-04-07...er.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-04-07_7efc674eb53229cffce28a0e089423ec_black-basta_coinminer_ryuk_sliver

  • Size

    3.3MB

  • Sample

    250407-se8mrawkx6

  • MD5

    7efc674eb53229cffce28a0e089423ec

  • SHA1

    f945ee411a3d8ce1b073dc1a8163c705c246878b

  • SHA256

    1dd1dab12710e65ecd5ee32c41be8f18f3a3914590160094363af4260355fb28

  • SHA512

    5a8bd8c90fb9b56d9e1a917e22ac4f0dd16f069e05dece76d966040301042bc7e3d1861ea2b4ab6ce33ad190a8d3e1a63462ce67af3c71828996d37fe37ac341

  • SSDEEP

    49152:yX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQeD5b/:ylRsZ47/QXoHUOfAoj1O5/

Score
10/10
meshagenthdf - diagnovie - ordinateurs

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

HDF - Diagnovie - Ordinateurs

C2

http://arthas.biogroup.network:443/agent.ashx

Attributes
  • mesh_id

    0xF7FBCEBA27C9AF633DA6D7CD5369C2634F556323FB70B5BF40054905EFCADF914B5F0B50A79EB8984B1A3EB3544FF5A7

  • server_id

    60FE607AC7B5C4A83F642D4F41F9149F153BEC2008C0EA803F0E9E147A43B8D095415898E2888F68BDCD1345D7FCF9AC

  • wss

    wss://arthas.biogroup.network:443/agent.ashx

Targets

    • Target

      2025-04-07_7efc674eb53229cffce28a0e089423ec_black-basta_coinminer_ryuk_sliver

    • Size

      3.3MB

    • MD5

      7efc674eb53229cffce28a0e089423ec

    • SHA1

      f945ee411a3d8ce1b073dc1a8163c705c246878b

    • SHA256

      1dd1dab12710e65ecd5ee32c41be8f18f3a3914590160094363af4260355fb28

    • SHA512

      5a8bd8c90fb9b56d9e1a917e22ac4f0dd16f069e05dece76d966040301042bc7e3d1861ea2b4ab6ce33ad190a8d3e1a63462ce67af3c71828996d37fe37ac341

    • SSDEEP

      49152:yX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQeD5b/:ylRsZ47/QXoHUOfAoj1O5/

    Score
    1/10
    behavioral1

MITRE ATT&CK Matrix

Tasks