Overview

overview

10

Static

static

2288.exe

windows7-x64

10

2288.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2288.exe

  • Size

    303KB

  • Sample

    221217-sw6jqagg75

  • MD5

    a91d1ad4f99dc142a63342a79a04a61c

  • SHA1

    9328310f5567fc7247516d21f339fb99b67706be

  • SHA256

    2c3fade9317146109c3dad7e9e06168a2af28d04185c248a3322cd8b8ae8901f

  • SHA512

    f869c9568afb90bec12732ce55552e66fe1dc2f9a52212a8011e2509805bfc59574ecbe4f52144ed8bde0b240849816cdb261ccefcb9d00f1ba65f0daa9cc39a

  • SSDEEP

    3072:S7WJjr2Y4hMi7RVRypzplBot6LB1fhnYAfm8QBmP22tThsNbNweGj+Qo6hNz5/a:++js57SFlnLDfhYAfLP22tThsIeGjY6

Score
10/10
systembctrojan

Malware Config

Extracted

Family

systembc

C2

89.248.163.218:443

Targets

    • Target

      2288.exe

    • Size

      303KB

    • MD5

      a91d1ad4f99dc142a63342a79a04a61c

    • SHA1

      9328310f5567fc7247516d21f339fb99b67706be

    • SHA256

      2c3fade9317146109c3dad7e9e06168a2af28d04185c248a3322cd8b8ae8901f

    • SHA512

      f869c9568afb90bec12732ce55552e66fe1dc2f9a52212a8011e2509805bfc59574ecbe4f52144ed8bde0b240849816cdb261ccefcb9d00f1ba65f0daa9cc39a

    • SSDEEP

      3072:S7WJjr2Y4hMi7RVRypzplBot6LB1fhnYAfm8QBmP22tThsNbNweGj+Qo6hNz5/a:++js57SFlnLDfhYAfLP22tThsIeGjY6

    Score
    10/10
    systembctrojan

    • SystemBC

      SystemBC is a proxy and remote administration tool first seen in 2019.

      trojansystembc

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks