systembc | 7dea671be77a2ca5772b86cf8831b02bff0567bce6a3ae023825aa40354f8aca | Triage

Sharing

General

Target

svhost.sa
Size

179KB
Sample

230215-y76azsdf2z
MD5

8fcb6fb21b4326466378991e42ce9865
SHA1

dd27145d9e4ec4a921b664183a9cbebee568c234
SHA256

7dea671be77a2ca5772b86cf8831b02bff0567bce6a3ae023825aa40354f8aca
SHA512

b27e95893c3651ac5f1de42924a2ccf01669ed50809ecbb1f0edd1211a754bfc1566b55cda58649162d2d55efbfe61ee470b84f225084e8d277d0c7c77622281
SSDEEP

3072:CisRnzAl7X/AZfRn6sbQ6rQ7oWYRq+bWxfMlOrFj2jA2yR4l3LCtrv7fuVfkkIko:C7zMr8Jn6qrQuINtydq5E7

Score

10^/10

systembc trojan

Malware Config

Extracted

Family

systembc

C2

45.77.195.73:443

192.168.1.28:443

Targets

- Target
  
  svhost.sa
- Size
  
  179KB
- MD5
  
  8fcb6fb21b4326466378991e42ce9865
- SHA1
  
  dd27145d9e4ec4a921b664183a9cbebee568c234
- SHA256
  
  7dea671be77a2ca5772b86cf8831b02bff0567bce6a3ae023825aa40354f8aca
- SHA512
  
  b27e95893c3651ac5f1de42924a2ccf01669ed50809ecbb1f0edd1211a754bfc1566b55cda58649162d2d55efbfe61ee470b84f225084e8d277d0c7c77622281
- SSDEEP
  
  3072:CisRnzAl7X/AZfRn6sbQ6rQ7oWYRq+bWxfMlOrFj2jA2yR4l3LCtrv7fuVfkkIko:C7zMr8Jn6qrQuINtydq5E7
Score

10^/10

systembc trojan
- SystemBC
  SystemBC is a proxy and remote administration tool first seen in 2019.
  trojan systembc
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2