Overview

overview

10

Static

static

a0be0fc03b...9c.exe

windows7-x64

10

a0be0fc03b...9c.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a0be0fc03b5e4097a0a60f89afd3ea9c.exe

  • Size

    375KB

  • Sample

    221225-jnn52abc37

  • MD5

    a0be0fc03b5e4097a0a60f89afd3ea9c

  • SHA1

    dae6c080f184ffe61e62931084cef68a5e45dbb7

  • SHA256

    71c37b1d53f487f7b8c025ab8b3aca6635e3d1555b5961a5c9b56bbbeca9888f

  • SHA512

    0596fa6739a36d3505d821a7144ec90ed288a0b25667fdd5a0aad2491ba24c9118c55d4530d3636236685870c99c2603259cded573548b178d63f3c4c6cf851e

  • SSDEEP

    6144:0bKbnMYcwtusRIUA3ku18D5kebj/juUe4WV5s+gVRfvV3PxD:0bgnFcoRIUMku18D9jrpzWV5JOfvhPd

Score
10/10
systembctrojan

Malware Config

Extracted

Family

systembc

C2

rupertok.su:4083

podisong.su:4083

Targets

    • Target

      a0be0fc03b5e4097a0a60f89afd3ea9c.exe

    • Size

      375KB

    • MD5

      a0be0fc03b5e4097a0a60f89afd3ea9c

    • SHA1

      dae6c080f184ffe61e62931084cef68a5e45dbb7

    • SHA256

      71c37b1d53f487f7b8c025ab8b3aca6635e3d1555b5961a5c9b56bbbeca9888f

    • SHA512

      0596fa6739a36d3505d821a7144ec90ed288a0b25667fdd5a0aad2491ba24c9118c55d4530d3636236685870c99c2603259cded573548b178d63f3c4c6cf851e

    • SSDEEP

      6144:0bKbnMYcwtusRIUA3ku18D5kebj/juUe4WV5s+gVRfvV3PxD:0bgnFcoRIUMku18D9jrpzWV5JOfvhPd

    Score
    10/10
    systembctrojan

    • SystemBC

      SystemBC is a proxy and remote administration tool first seen in 2019.

      trojansystembc

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks