General
-
Target
2025-06-04_ce1ebe14c6396ea319cfb98f6347d48f_black-basta_coinminer_ryuk_sliver
-
Size
3.4MB
-
Sample
250604-mpmkdacj81
-
MD5
ce1ebe14c6396ea319cfb98f6347d48f
-
SHA1
4a07ed0e92191281e05c13a21672ed062452760e
-
SHA256
99d3ff066ccaac04c8638bcad76cc0e95e30526460a227236278d1ff87a34195
-
SHA512
8174469ce2f0550b6331cc195224b20d66d50c47f8f644a38c13f6750b3fddb69af65325ebc1f986cd9d987458cb97244a79620c6909737dee8deda34121cb08
-
SSDEEP
49152:AdZEy2B6vflQf6X8uZQoy3vR6QVQy5Z+bm4M/HMFvfGW0/wZ7IbOjxw5h:0HvfGfZvZj1/N/z/AwL
Behavioral task
behavioral1
Sample
2025-06-04_ce1ebe14c6396ea319cfb98f6347d48f_black-basta_coinminer_ryuk_sliver.exe
Resource
win10v2004-20250502-en
Malware Config
Extracted
meshagent
2
deep
http://remoteshare.in:444/agent.ashx
-
mesh_id
0x08E8BC49ECA432C54AD15A6F52B72AD9835C0F5AEF2FBF868D82572D119FF22E59F1758A2EE97CE7CAD22CE0EE2C03CA
-
server_id
C6DE5260F3DF733E712F21316EE6EE643ABC568C44EC1AE991C57525DD26FAF883ED8D9A208F6CD34C3CC1CF7943ECD7
-
wss
wss://remoteshare.in:444/agent.ashx
Targets
-
-
Target
2025-06-04_ce1ebe14c6396ea319cfb98f6347d48f_black-basta_coinminer_ryuk_sliver
-
Size
3.4MB
-
MD5
ce1ebe14c6396ea319cfb98f6347d48f
-
SHA1
4a07ed0e92191281e05c13a21672ed062452760e
-
SHA256
99d3ff066ccaac04c8638bcad76cc0e95e30526460a227236278d1ff87a34195
-
SHA512
8174469ce2f0550b6331cc195224b20d66d50c47f8f644a38c13f6750b3fddb69af65325ebc1f986cd9d987458cb97244a79620c6909737dee8deda34121cb08
-
SSDEEP
49152:AdZEy2B6vflQf6X8uZQoy3vR6QVQy5Z+bm4M/HMFvfGW0/wZ7IbOjxw5h:0HvfGfZvZj1/N/z/AwL
Score1/10 -