General
-
Target
2025-06-04_a4ee91fc40f837990cbc2082b36c2a5a_black-basta_coinminer_ryuk_sliver
-
Size
3.3MB
-
Sample
250604-mks7cswkv9
-
MD5
a4ee91fc40f837990cbc2082b36c2a5a
-
SHA1
8b1b52237b5deac5da0a82a29158983b19f949ff
-
SHA256
5a028b44400e669f53d75187474752dc577c34d2f978031cf5790f6350075512
-
SHA512
a22656225f0051179c199d5eb132e3b642acf9ce1050d0ae1cc841e617f9465842dd913e00ea1c98a074272b982d1bed0800ed62e7013b041c3d64a4e61da9fb
-
SSDEEP
49152:IX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85QF:IlRsZ47/QXoHUOfAoj1x6F
Behavioral task
behavioral1
Sample
2025-06-04_a4ee91fc40f837990cbc2082b36c2a5a_black-basta_coinminer_ryuk_sliver.exe
Resource
win10v2004-20250502-en
Behavioral task
behavioral2
Sample
2025-06-04_a4ee91fc40f837990cbc2082b36c2a5a_black-basta_coinminer_ryuk_sliver.exe
Resource
win11-20250502-en
Malware Config
Extracted
meshagent
2
Default
http://mc.viatechnik-inc.com:443/agent.ashx
-
mesh_id
0xEF10EE17142F551E4E173711E393D445EE3C9C3B487F553F6C6A55E86E3F22B63B40F5916C013845386D2EE403ED4EEB
-
server_id
A0E7D79F44F9C71A7BCAC32B8BF63F6434D7C510A618B8CE3B4D01CAF77144349EA6A0C2753108AD9DB70A08EF8FE010
-
wss
wss://mc.viatechnik-inc.com:443/agent.ashx
Targets
-
-
Target
2025-06-04_a4ee91fc40f837990cbc2082b36c2a5a_black-basta_coinminer_ryuk_sliver
-
Size
3.3MB
-
MD5
a4ee91fc40f837990cbc2082b36c2a5a
-
SHA1
8b1b52237b5deac5da0a82a29158983b19f949ff
-
SHA256
5a028b44400e669f53d75187474752dc577c34d2f978031cf5790f6350075512
-
SHA512
a22656225f0051179c199d5eb132e3b642acf9ce1050d0ae1cc841e617f9465842dd913e00ea1c98a074272b982d1bed0800ed62e7013b041c3d64a4e61da9fb
-
SSDEEP
49152:IX3YnLOQYsZfQ74C6SkgSbXP31+frjUYuHi7nT8poTMFvfuJ1kZ7NrjHQe85QF:IlRsZ47/QXoHUOfAoj1x6F
Score1/10 -