General

  • Target

    2025-06-03_4f95801524bf8d0d7f1716576adf8fab_amadey_black-basta_cobalt-strike_coinminer_luca-stealer_satacom

  • Size

    6.0MB

  • Sample

    250603-prp5dsvjy8

  • MD5

    4f95801524bf8d0d7f1716576adf8fab

  • SHA1

    ca32c2444e3c1fd1e3c46dcf0a17f86f57210437

  • SHA256

    b33ff5613a3999365d82f743e398901de1bf7a2b504d91e14f9c7769db3b94a6

  • SHA512

    9b4d1dc01bdd32ef2096d34f89fd19cb64b4c385d94beebf25014a5b56c2044d462f894f8bce197c5f6fe2fe573ae15d8d87ab9ecb9efde23ec0fe9ddb8a782b

  • SSDEEP

    98304:v+y7ClYJ5v+QByhKFcLih/a3eo+NV30QNV391F:vLjj+MyhLih/f0QfTF

Score
10/10

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

Vue4exam

C2

http://remote.examremote.com:443/agent.ashx

Attributes
  • mesh_id

    0x0F3ECD613895027914E3966633942BEFC309979D4F5197D5707EBE487BFC128081A105E934C70F0FDD6B78A50045F097

  • server_id

    460435B76E2BA7A386C796547EE9B205E12F241B5E68453D37FB6DC55D7215361C5860C69962327ED15D48ACFF0C8280

  • wss

    wss://remote.examremote.com:443/agent.ashx

Targets

    • Target

      2025-06-03_4f95801524bf8d0d7f1716576adf8fab_amadey_black-basta_cobalt-strike_coinminer_luca-stealer_satacom

    • Size

      6.0MB

    • MD5

      4f95801524bf8d0d7f1716576adf8fab

    • SHA1

      ca32c2444e3c1fd1e3c46dcf0a17f86f57210437

    • SHA256

      b33ff5613a3999365d82f743e398901de1bf7a2b504d91e14f9c7769db3b94a6

    • SHA512

      9b4d1dc01bdd32ef2096d34f89fd19cb64b4c385d94beebf25014a5b56c2044d462f894f8bce197c5f6fe2fe573ae15d8d87ab9ecb9efde23ec0fe9ddb8a782b

    • SSDEEP

      98304:v+y7ClYJ5v+QByhKFcLih/a3eo+NV30QNV391F:vLjj+MyhLih/f0QfTF

    Score
    1/10

MITRE ATT&CK Matrix

Tasks