Resubmissions

12/11/2022, 11:37

221112-nrl73aab8v 10

03/11/2022, 07:26

221103-h9jl1afeh6 10

General

  • Target

    0915eb750b11e94953c1986391d89c8a.exe

  • Size

    9.6MB

  • Sample

    221103-h9jl1afeh6

  • MD5

    0915eb750b11e94953c1986391d89c8a

  • SHA1

    71486f38fdb43239ccf56b6349e0eaf86e68022a

  • SHA256

    d72645347b3fa6134cc416b6b9d73eec9d4ef2af4dbf26c6b91da795144c394c

  • SHA512

    aa9d1049c4ea0500782db8957f8d9ef8df707994c5ea8f9a8855b9c3d01f8f209f3165aa576b1b04ec7117fc3506aeb664259d7a310342b60b6f769d6303ce61

  • SSDEEP

    196608:P/JjqWE4GnFcaCCnTwaJ6qu8jKmEHEByu0cssD1MGQQtgIL:P/8tCWwaJju85X0hGgIL

Score
10/10

Malware Config

Extracted

Family

systembc

C2

filmsoneonline.com:4246

onlinefilmshome.com:4246

Targets

    • Target

      0915eb750b11e94953c1986391d89c8a.exe

    • Size

      9.6MB

    • MD5

      0915eb750b11e94953c1986391d89c8a

    • SHA1

      71486f38fdb43239ccf56b6349e0eaf86e68022a

    • SHA256

      d72645347b3fa6134cc416b6b9d73eec9d4ef2af4dbf26c6b91da795144c394c

    • SHA512

      aa9d1049c4ea0500782db8957f8d9ef8df707994c5ea8f9a8855b9c3d01f8f209f3165aa576b1b04ec7117fc3506aeb664259d7a310342b60b6f769d6303ce61

    • SSDEEP

      196608:P/JjqWE4GnFcaCCnTwaJ6qu8jKmEHEByu0cssD1MGQQtgIL:P/8tCWwaJju85X0hGgIL

    Score
    10/10
    • SystemBC

      SystemBC is a proxy and remote administration tool first seen in 2019.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks