Overview

overview

10

Static

static

dridex

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8f7121a958df11aa43e815ca7a817855f0b9c110dc2b04218e2d2cf70af183a9

  • Size

    232KB

  • Sample

    220312-y985nacfdq

  • MD5

    ce591b70c7652020600bf6a1a921caf9

  • SHA1

    eaa943f12b21ce0f8229bd9d1ada80f5d7201bb2

  • SHA256

    8f7121a958df11aa43e815ca7a817855f0b9c110dc2b04218e2d2cf70af183a9

  • SHA512

    86691bc1cab89d29b71e2da4d8c48de571c3c9f12f15a57efc874a4dd415dec0099aabacbce37ca30e18d3ac724ad690a8b06ec841997e380662b6c163727955

Score
10/10
systembcsuricatatrojan

Malware Config

Extracted

Family

systembc

C2

31.44.185.6:4001

31.44.185.11:4001

Targets

    • Target

      8f7121a958df11aa43e815ca7a817855f0b9c110dc2b04218e2d2cf70af183a9

    • Size

      232KB

    • MD5

      ce591b70c7652020600bf6a1a921caf9

    • SHA1

      eaa943f12b21ce0f8229bd9d1ada80f5d7201bb2

    • SHA256

      8f7121a958df11aa43e815ca7a817855f0b9c110dc2b04218e2d2cf70af183a9

    • SHA512

      86691bc1cab89d29b71e2da4d8c48de571c3c9f12f15a57efc874a4dd415dec0099aabacbce37ca30e18d3ac724ad690a8b06ec841997e380662b6c163727955

    Score
    10/10
    systembcsuricatatrojan

    • SystemBC

      SystemBC is a proxy and remote administration tool first seen in 2019.

      trojansystembc

    • suricata: ET MALWARE Single char EXE direct download likely trojan (multiple families)

      suricata: ET MALWARE Single char EXE direct download likely trojan (multiple families)

      suricata

    • suricata: ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile

      suricata: ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile

      suricata

    • suricata: ET MALWARE Win32/SystemBC CnC Checkin

      suricata: ET MALWARE Win32/SystemBC CnC Checkin

      suricata

    • Downloads MZ/PE file

    • Executes dropped EXE

    behavioral1

MITRE ATT&CK Matrix

Tasks