Analysis
-
max time kernel
120s -
max time network
143s -
platform
windows10_x64 -
resource
win10-en-20211104 -
submitted
11-11-2021 20:16
General
-
Target
e03c7c137c9616dce7aa69a657cb3c7ef849931dc570d98d1467f5b0ace0841c.exe
-
Size
333KB
-
MD5
391e868c6dfce64177b2c9e7ccccceff
-
SHA1
d6be8b201ca0a69da4deb5aba4148b3aa0651c6a
-
SHA256
e03c7c137c9616dce7aa69a657cb3c7ef849931dc570d98d1467f5b0ace0841c
-
SHA512
3efb3fa9336e35d9025c0b5c85e73857650ca1bbbb6dba0a828e15a8b8f5abc1a7c924e0496365f7a276ae6dd279d79773118914ff64a4f360ac831f10025f46
Score
10/10
Malware Config
Extracted
Family
systembc
C2
91.212.150.113:4199
192.53.123.202:4199
Signatures
-
SystemBC
SystemBC is a proxy and remote administration tool first seen in 2019.
-
Drops file in Windows directory 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\e03c7c137c9616dce7aa69a657cb3c7ef849931dc570d98d1467f5b0ace0841c.exe"C:\Users\Admin\AppData\Local\Temp\e03c7c137c9616dce7aa69a657cb3c7ef849931dc570d98d1467f5b0ace0841c.exe"1⤵
- Drops file in Windows directory
-
C:\Users\Admin\AppData\Local\Temp\e03c7c137c9616dce7aa69a657cb3c7ef849931dc570d98d1467f5b0ace0841c.exeC:\Users\Admin\AppData\Local\Temp\e03c7c137c9616dce7aa69a657cb3c7ef849931dc570d98d1467f5b0ace0841c.exe start1⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
39.3MB
-
Filesize
20KB
-
Filesize
39.3MB
-
Filesize
696KB