General

  • Target

    2025-06-05_5436a1011566119ff2bd24637355966c_amadey_black-basta_coinminer_elex_luca-stealer_revil_smoke-loader

  • Size

    3.7MB

  • Sample

    250605-lngr3avwaw

  • MD5

    5436a1011566119ff2bd24637355966c

  • SHA1

    2bf8ce6fd9e5aa75676a669adb9ae48ece1f5bf2

  • SHA256

    40b8259d683008f4fefa1d6d64ce7636df5022285579cecc95b9451528ff477a

  • SHA512

    aef9224744c20912e858c5186d3fa5e5ed6b586318f81ce7db21b1a36242dbaf9964089d9a4c6b8924e8df716381fecc858d6c27b037a104a11d6d823fb61b67

  • SSDEEP

    49152:UfEV3ugKeuWoAkf6bRexQlNIdwB0pJCWJ0+1NaZPwq+5bWZPau:UfEYnnfKthWq+1jJWZPau

Malware Config

Extracted

Family

meshagent

Version

2

Botnet

RedLocal

Attributes
  • mesh_id

    0x73997C8F61AC101E350D87AF1F022CAF9345A44299A26E45B81D63F3A223048D2FE1240BD2890CA3666D438261EB5030

  • server_id

    A123846AA3E3A74108FDD82CA7F951AFC84B1557E8CC6326B20E137932DD2E88D2AABEF5960E86997F1FB61EB751A523

  • wss

    localhost

Targets

    • Target

      2025-06-05_5436a1011566119ff2bd24637355966c_amadey_black-basta_coinminer_elex_luca-stealer_revil_smoke-loader

    • Size

      3.7MB

    • MD5

      5436a1011566119ff2bd24637355966c

    • SHA1

      2bf8ce6fd9e5aa75676a669adb9ae48ece1f5bf2

    • SHA256

      40b8259d683008f4fefa1d6d64ce7636df5022285579cecc95b9451528ff477a

    • SHA512

      aef9224744c20912e858c5186d3fa5e5ed6b586318f81ce7db21b1a36242dbaf9964089d9a4c6b8924e8df716381fecc858d6c27b037a104a11d6d823fb61b67

    • SSDEEP

      49152:UfEV3ugKeuWoAkf6bRexQlNIdwB0pJCWJ0+1NaZPwq+5bWZPau:UfEYnnfKthWq+1jJWZPau

    Score
    3/10

MITRE ATT&CK Enterprise v16

Tasks