Analysis
-
max time kernel
122s -
max time network
143s -
platform
windows10_x64 -
resource
win10-en-20211014 -
submitted
12-11-2021 15:54
General
-
Target
ec8212964680ed4d1a835b38350d777c1b087272538d3c9555de2de529dc54a0.exe
-
Size
158KB
-
MD5
62538c13871d28a0dacb2af9c8c50f30
-
SHA1
8138aa77a3471164b5d9de84bdd7645a7dbc8bbb
-
SHA256
ec8212964680ed4d1a835b38350d777c1b087272538d3c9555de2de529dc54a0
-
SHA512
122ac1fd57eb74ae11cdf5b903e755455904d40119f2c6f5b26af1211c086884683bf651b772ece326f1ad22f2f1e1b6ebd60b3bb1ba22c21c78073dcb5bc6b8
Score
10/10
Malware Config
Extracted
Family
systembc
C2
91.212.150.113:4199
192.53.123.202:4199
Signatures
-
SystemBC
SystemBC is a proxy and remote administration tool first seen in 2019.
-
Drops file in Windows directory 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\ec8212964680ed4d1a835b38350d777c1b087272538d3c9555de2de529dc54a0.exe"C:\Users\Admin\AppData\Local\Temp\ec8212964680ed4d1a835b38350d777c1b087272538d3c9555de2de529dc54a0.exe"1⤵
- Drops file in Windows directory
-
C:\Users\Admin\AppData\Local\Temp\ec8212964680ed4d1a835b38350d777c1b087272538d3c9555de2de529dc54a0.exeC:\Users\Admin\AppData\Local\Temp\ec8212964680ed4d1a835b38350d777c1b087272538d3c9555de2de529dc54a0.exe start1⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
24KB
-
Filesize
20KB
-
Filesize
196KB
-
Filesize
1.3MB
-
Filesize
1.3MB
-
Filesize
196KB