Overview

overview

10

Static

static

8

83514393db...c2.exe

windows7-x64

10

83514393db...c2.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    83514393db26424b554847acb66e57c2.exe

  • Size

    109KB

  • Sample

    221211-kap1vagf89

  • MD5

    83514393db26424b554847acb66e57c2

  • SHA1

    f011dac01e0e0552c2f42665e444cab907394353

  • SHA256

    609107e7e71a4899fa5496da826c92a2ca05134e7f79b0bbda280696de45f937

  • SHA512

    5899f1f574e8ae7f607267ada11b193ec5662a437d4db30aa2804f682779fa493369109aea27c57d6a8f190cd74ace17507df9ec06cabb235cb5b8453448de59

  • SSDEEP

    3072:z4CKjfWVRLecKlAG1OCRpwI1KCnLAHa15:yW7ZUO+OIUCLAHa15

Score
10/10
systembctrojanupx

Malware Config

Targets

    • Target

      83514393db26424b554847acb66e57c2.exe

    • Size

      109KB

    • MD5

      83514393db26424b554847acb66e57c2

    • SHA1

      f011dac01e0e0552c2f42665e444cab907394353

    • SHA256

      609107e7e71a4899fa5496da826c92a2ca05134e7f79b0bbda280696de45f937

    • SHA512

      5899f1f574e8ae7f607267ada11b193ec5662a437d4db30aa2804f682779fa493369109aea27c57d6a8f190cd74ace17507df9ec06cabb235cb5b8453448de59

    • SSDEEP

      3072:z4CKjfWVRLecKlAG1OCRpwI1KCnLAHa15:yW7ZUO+OIUCLAHa15

    Score
    10/10
    systembctrojanupx

    • SystemBC

      SystemBC is a proxy and remote administration tool first seen in 2019.

      trojansystembc

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks