General

  • Target

    2025-06-02_9e9a615652c1b052689f3038a5c4ff90_black-basta_coinminer_ryuk_sliver

  • Size

    3.3MB

  • Sample

    250602-syetsadn8z

  • MD5

    9e9a615652c1b052689f3038a5c4ff90

  • SHA1

    c754ed18f5cef380c1c733fe270b4e8b4937d1a3

  • SHA256

    38454ec5eb2571c5b16b214fbe449ba9a1debc9b8d6561a76030fb4dd953846c

  • SHA512

    ea02b5315d3a31a987909c123b86808cdbc15a6383bd17cfb16789971d8c2f20ac18e608c083319fab48c1894888a6a5fc178f458df9881959e875bd52550e9f

  • SSDEEP

    49152:bdZEy2B6vflQf6X8uZQoy3vR6QVQy5Z+bm4M/HMFvfGW0/7Z7Ib3jxM5yIf:JHvfGfZvZj1/N/z/oMQm

Score
10/10

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

ECOINSIDE

C2

http://meshcentral.kurtbomsan.com:443/agent.ashx

Attributes
  • mesh_id

    0xFF5326F4BFD2B1A741D45FD40E967D05F8BF16CC266A4603D359A9C471B6D5EDE48EDCE13930CEA922B08DE7FA7B2632

  • server_id

    72A55319BCF0B10C08A1962B0BBD54C42A6BF13ED88672F926EE4B289082271BABC5B7A3C9CC0A76463E994D50BDB2FE

  • wss

    wss://meshcentral.kurtbomsan.com:443/agent.ashx

Targets

    • Target

      2025-06-02_9e9a615652c1b052689f3038a5c4ff90_black-basta_coinminer_ryuk_sliver

    • Size

      3.3MB

    • MD5

      9e9a615652c1b052689f3038a5c4ff90

    • SHA1

      c754ed18f5cef380c1c733fe270b4e8b4937d1a3

    • SHA256

      38454ec5eb2571c5b16b214fbe449ba9a1debc9b8d6561a76030fb4dd953846c

    • SHA512

      ea02b5315d3a31a987909c123b86808cdbc15a6383bd17cfb16789971d8c2f20ac18e608c083319fab48c1894888a6a5fc178f458df9881959e875bd52550e9f

    • SSDEEP

      49152:bdZEy2B6vflQf6X8uZQoy3vR6QVQy5Z+bm4M/HMFvfGW0/7Z7Ib3jxM5yIf:JHvfGfZvZj1/N/z/oMQm

    Score
    1/10

MITRE ATT&CK Matrix

Tasks