General

  • Target

    2025-06-04_ce1ebe14c6396ea319cfb98f6347d48f_black-basta_coinminer_ryuk_sliver

  • Size

    3.4MB

  • Sample

    250604-mq7lyack4t

  • MD5

    ce1ebe14c6396ea319cfb98f6347d48f

  • SHA1

    4a07ed0e92191281e05c13a21672ed062452760e

  • SHA256

    99d3ff066ccaac04c8638bcad76cc0e95e30526460a227236278d1ff87a34195

  • SHA512

    8174469ce2f0550b6331cc195224b20d66d50c47f8f644a38c13f6750b3fddb69af65325ebc1f986cd9d987458cb97244a79620c6909737dee8deda34121cb08

  • SSDEEP

    49152:AdZEy2B6vflQf6X8uZQoy3vR6QVQy5Z+bm4M/HMFvfGW0/wZ7IbOjxw5h:0HvfGfZvZj1/N/z/AwL

Score
10/10

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

deep

C2

http://remoteshare.in:444/agent.ashx

Attributes
  • mesh_id

    0x08E8BC49ECA432C54AD15A6F52B72AD9835C0F5AEF2FBF868D82572D119FF22E59F1758A2EE97CE7CAD22CE0EE2C03CA

  • server_id

    C6DE5260F3DF733E712F21316EE6EE643ABC568C44EC1AE991C57525DD26FAF883ED8D9A208F6CD34C3CC1CF7943ECD7

  • wss

    wss://remoteshare.in:444/agent.ashx

Targets

    • Target

      2025-06-04_ce1ebe14c6396ea319cfb98f6347d48f_black-basta_coinminer_ryuk_sliver

    • Size

      3.4MB

    • MD5

      ce1ebe14c6396ea319cfb98f6347d48f

    • SHA1

      4a07ed0e92191281e05c13a21672ed062452760e

    • SHA256

      99d3ff066ccaac04c8638bcad76cc0e95e30526460a227236278d1ff87a34195

    • SHA512

      8174469ce2f0550b6331cc195224b20d66d50c47f8f644a38c13f6750b3fddb69af65325ebc1f986cd9d987458cb97244a79620c6909737dee8deda34121cb08

    • SSDEEP

      49152:AdZEy2B6vflQf6X8uZQoy3vR6QVQy5Z+bm4M/HMFvfGW0/wZ7IbOjxw5h:0HvfGfZvZj1/N/z/AwL

    Score
    1/10

MITRE ATT&CK Matrix

Tasks