systembc | 5a8bff61d763ebedce54e24428a041cb5276b5ffad92e009fd36203f122961ca | Triage

Sharing

General

Target

5a8bff61d763ebedce54e24428a041cb5276b5ffad92e009fd36203f122961ca
Size

507KB
Sample

220114-1tl2asbber
MD5

d8f3abf2c283de95b8f1b8474220adfd
SHA1

3ca1423519539f0c608e2cc6f35e7a5a5977edb4
SHA256

5a8bff61d763ebedce54e24428a041cb5276b5ffad92e009fd36203f122961ca
SHA512

e6c8883caf517ab98773b3b5be78d2aa3a1bd01c55576cb4fbcc75ba3a39cd09f60482307a3ebc83fd91a5f5aca7731b188b932979df5f495351d70346fd2557

Score

10^/10

systembc trojan

Malware Config

Extracted

Family

systembc

C2

mainscpnl.xyz:4207

backpscpnl.xyz:4207

Targets

- Target
  
  5a8bff61d763ebedce54e24428a041cb5276b5ffad92e009fd36203f122961ca
- Size
  
  507KB
- MD5
  
  d8f3abf2c283de95b8f1b8474220adfd
- SHA1
  
  3ca1423519539f0c608e2cc6f35e7a5a5977edb4
- SHA256
  
  5a8bff61d763ebedce54e24428a041cb5276b5ffad92e009fd36203f122961ca
- SHA512
  
  e6c8883caf517ab98773b3b5be78d2aa3a1bd01c55576cb4fbcc75ba3a39cd09f60482307a3ebc83fd91a5f5aca7731b188b932979df5f495351d70346fd2557
Score

10^/10

systembc trojan
- SystemBC
  SystemBC is a proxy and remote administration tool first seen in 2019.
  trojan systembc
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1