Overview

overview

10

Static

static

10

dll/socks32.dll

windows7_x64

8

dll/socks32.dll

windows10_x64

8

dll/socks64.dll

windows7_x64

8

dll/socks64.dll

windows10_x64

8

server.exe

windows7_x64

8

server.exe

windows10_x64

8

server.out

linux_amd64

server.out

linux_mipsel

server.out

linux_mips

socks.exe

windows7_x64

4

socks.exe

windows10_x64

4

www/system...har.js

windows7_x64

1

www/system...har.js

windows10_x64

1

www/system...x.html

windows7_x64

1

www/system...x.html

windows10_x64

1

www/system...php.js

windows7_x64

1

www/system...php.js

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    edc_systembc.zip

  • Size

    27.3MB

  • MD5

    a63e373b7d353b3f4780e2f32616bd41

  • SHA1

    82d7e0fb737b285a25b34ea14dede242d1d0e1e9

  • SHA256

    3cafa584500cacaedd9f29771969bab7f499b47d1912cfcc03fc58cf662ee545

  • SHA512

    26bf6b68233622123fe995121f9bc36286c04be34cef6fa5a8fda89fd226649c0f60384e5242225b855c1074fa7f764b70754718407b0c7a8532225818c1db06

Score
10/10
systembc

Malware Config

Extracted

Family

systembc

C2

88.198.147.80:4174

78.47.64.46:4174

Signatures

Files

  • edc_systembc.zip
    .zip
  • dll/socks32.dll
    .dll windows x86


    Exports

  • dll/socks64.dll
    .dll windows x64


    Exports

  • install.txt
  • server.exe
    .exe windows x64


  • server.out
    .elf linux x64
  • socks.exe
    .exe windows x86


  • www/systembc/geoip/GeoLite2-City.mmdb
  • www/systembc/geoip/geoip2.phar
    .js
  • www/systembc/index.html
  • www/systembc/password.php
    .js