systembc | 77eb3eb81fb496c86ee1578e57ac0251e38540613a3a5a0d5f3d362fa81a693f | Triage

Sharing

General

Target

redit.exe
Size

408KB
Sample

230307-msxjraha8v
MD5

9ff723d163e9396f0864cdb77508e8f3
SHA1

878bb73586db91ab9867d4bda793377eff1344a1
SHA256

77eb3eb81fb496c86ee1578e57ac0251e38540613a3a5a0d5f3d362fa81a693f
SHA512

5e7213200bdadd4288f338fc9cb3c66f8a40138690e159d8b708ea3ff47a141332bf62513219d65b058b06ff870662a6ff265ada47fc7af399e3bcfa5e88e20e
SSDEEP

3072:9Fs0W8pkw2l2GbTnK4I/qvk4j7/2oDnbA6I9Drxi6NxTY9qo+v5YF4WqH+:9rZpkT2GXnY/qvk4Wqn3win97++

Score

10^/10

systembc trojan

Malware Config

Extracted

Family

systembc

C2

212.118.36.165:4193

46.151.26.42:4193

Targets

- Target
  
  redit.exe
- Size
  
  408KB
- MD5
  
  9ff723d163e9396f0864cdb77508e8f3
- SHA1
  
  878bb73586db91ab9867d4bda793377eff1344a1
- SHA256
  
  77eb3eb81fb496c86ee1578e57ac0251e38540613a3a5a0d5f3d362fa81a693f
- SHA512
  
  5e7213200bdadd4288f338fc9cb3c66f8a40138690e159d8b708ea3ff47a141332bf62513219d65b058b06ff870662a6ff265ada47fc7af399e3bcfa5e88e20e
- SSDEEP
  
  3072:9Fs0W8pkw2l2GbTnK4I/qvk4j7/2oDnbA6I9Drxi6NxTY9qo+v5YF4WqH+:9rZpkT2GXnY/qvk4Wqn3win97++
Score

10^/10

systembc trojan
- SystemBC
  SystemBC is a proxy and remote administration tool first seen in 2019.
  trojan systembc
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2