systembc | 27b02c8206e0c917a1d2e5868d315a6d6c60d09d196db82796e169cb5b1b2b4a | Triage

Submit
Reports

Overview

overview

Static

static

qxuo.exe

windows7-x64

qxuo.exe

windows10-2004-x64

Sharing

General

Target

qxuo.exe
Size

280KB
Sample

221004-nwzc7abbap
MD5

ea6e100e34a7472c8790b13d69aa4620
SHA1

3e4d8073a6949465c68802f7cb4aadbdc2404ed8
SHA256

27b02c8206e0c917a1d2e5868d315a6d6c60d09d196db82796e169cb5b1b2b4a
SHA512

c2935df6879cfa637b5254d913f84f90e76710f161f665f70a3e53b23e7528f9cdedd5eb80fdc2af04da69f37a244c38346e545189afb67cbfb959780ce4823e
SSDEEP

6144:geV91Qv5FNebxuQ8IffXQyov/uy2dmbFOud8ddzpy:geBQv5Fgdup+fXQyuT2dm5OqWny

Score

10^/10

systembc trojan

Static task

static1

Behavioral task

behavioral1

Sample

qxuo.exe

Resource

win7-20220812-en

systembc trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

qxuo.exe

Resource

win10v2004-20220812-en

systembc trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

systembc

C2

89.40.206.121:4001

Targets

- Target
  
  qxuo.exe
- Size
  
  280KB
- MD5
  
  ea6e100e34a7472c8790b13d69aa4620
- SHA1
  
  3e4d8073a6949465c68802f7cb4aadbdc2404ed8
- SHA256
  
  27b02c8206e0c917a1d2e5868d315a6d6c60d09d196db82796e169cb5b1b2b4a
- SHA512
  
  c2935df6879cfa637b5254d913f84f90e76710f161f665f70a3e53b23e7528f9cdedd5eb80fdc2af04da69f37a244c38346e545189afb67cbfb959780ce4823e
- SSDEEP
  
  6144:geV91Qv5FNebxuQ8IffXQyov/uy2dmbFOud8ddzpy:geBQv5Fgdup+fXQyuT2dm5OqWny
Score

10^/10

systembc trojan
- SystemBC
  SystemBC is a proxy and remote administration tool first seen in 2019.
  trojan systembc
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy