General

  • Target

    2025-06-04_a4ee91fc40f837990cbc2082b36c2a5a_black-basta_coinminer_ryuk_sliver

  • Size

    3.3MB

  • Sample

    250604-mks7cswkv9

  • MD5

    a4ee91fc40f837990cbc2082b36c2a5a

  • SHA1

    8b1b52237b5deac5da0a82a29158983b19f949ff

  • SHA256

    5a028b44400e669f53d75187474752dc577c34d2f978031cf5790f6350075512

  • SHA512

    a22656225f0051179c199d5eb132e3b642acf9ce1050d0ae1cc841e617f9465842dd913e00ea1c98a074272b982d1bed0800ed62e7013b041c3d64a4e61da9fb

  • SSDEEP

    49152:IX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85QF:IlRsZ47/QXoHUOfAoj1x6F

Score
10/10

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

Default

C2

http://mc.viatechnik-inc.com:443/agent.ashx

Attributes
  • mesh_id

    0xEF10EE17142F551E4E173711E393D445EE3C9C3B487F553F6C6A55E86E3F22B63B40F5916C013845386D2EE403ED4EEB

  • server_id

    A0E7D79F44F9C71A7BCAC32B8BF63F6434D7C510A618B8CE3B4D01CAF77144349EA6A0C2753108AD9DB70A08EF8FE010

  • wss

    wss://mc.viatechnik-inc.com:443/agent.ashx

Targets

    • Target

      2025-06-04_a4ee91fc40f837990cbc2082b36c2a5a_black-basta_coinminer_ryuk_sliver

    • Size

      3.3MB

    • MD5

      a4ee91fc40f837990cbc2082b36c2a5a

    • SHA1

      8b1b52237b5deac5da0a82a29158983b19f949ff

    • SHA256

      5a028b44400e669f53d75187474752dc577c34d2f978031cf5790f6350075512

    • SHA512

      a22656225f0051179c199d5eb132e3b642acf9ce1050d0ae1cc841e617f9465842dd913e00ea1c98a074272b982d1bed0800ed62e7013b041c3d64a4e61da9fb

    • SSDEEP

      49152:IX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85QF:IlRsZ47/QXoHUOfAoj1x6F

    Score
    1/10

MITRE ATT&CK Matrix

Tasks