systembc | 1972e8136931f0b0fcc9ce917c9eeed13a5fd261c6453173d69bce28bfa1af54 | Triage

Submit
Reports

Overview

overview

Static

static

socks.exe

windows7-x64

socks.exe

windows10-2004-x64

Sharing

General

Target

socks.exe
Size

32KB
Sample

221122-f94k3abf26
MD5

f6fc8a2495fb25c71b3e7a355628b19f
SHA1

dce93888658c9e20bce5bc0ba829230966ea25d8
SHA256

1972e8136931f0b0fcc9ce917c9eeed13a5fd261c6453173d69bce28bfa1af54
SHA512

88eb7b301423e22fb91b3de69f411f531b56aa45838b4ca72780a293c726a222921a31ebb1a5ecd6298e254209d0600cd4106819c514bbc0c74fd0b037e02946
SSDEEP

768:nEda2pzI7icyFK4JP7YSud6gfzsUwdgug5oJa2crh:nEdI7icyFvPVoGgX5o

Score

10^/10

systembc trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

socks.exe

Resource

win7-20221111-en

systembc trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

socks.exe

Resource

win10v2004-20220812-en

systembc trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

systembc

C2

95.161.131.6:4001

45.153.240.152:4001

Targets

- Target
  
  socks.exe
- Size
  
  32KB
- MD5
  
  f6fc8a2495fb25c71b3e7a355628b19f
- SHA1
  
  dce93888658c9e20bce5bc0ba829230966ea25d8
- SHA256
  
  1972e8136931f0b0fcc9ce917c9eeed13a5fd261c6453173d69bce28bfa1af54
- SHA512
  
  88eb7b301423e22fb91b3de69f411f531b56aa45838b4ca72780a293c726a222921a31ebb1a5ecd6298e254209d0600cd4106819c514bbc0c74fd0b037e02946
- SSDEEP
  
  768:nEda2pzI7icyFK4JP7YSud6gfzsUwdgug5oJa2crh:nEdI7icyFvPVoGgX5o
Score

10^/10

systembc trojan
- SystemBC
  SystemBC is a proxy and remote administration tool first seen in 2019.
  trojan systembc
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy