Overview

overview

10

Static

static

10

1240-54-0x...ry.exe

windows7-x64

10

1240-54-0x...ry.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1240-54-0x0000000000400000-0x000000000094E000-memory.dmp

  • Size

    5.3MB

  • Sample

    230317-kj39tsfb68

  • MD5

    40560f7a821efbc9f4a3c3e61322e2af

  • SHA1

    48c743eedc80ca03a6c455477bc1f1e8567fc67d

  • SHA256

    e8743ff07230f004bd6b39aa2cc01d49918b09f63268eb397e34549496e0b249

  • SHA512

    6396b7784e50b2096ead1491ae0340e0f6a6674f6651bc28009c32ee80e7921ee52f8b7b18c3dba16161587e61cf64516be7a23f87acfbe93d8d77b28d578e73

  • SSDEEP

    98304:Uj9YYO4CrXY9HpBlwBvEYvGsLHrI21tjFHpojkI:brXY9JBovEALHrIUJXI

Score
10/10
systembcthemidatrojan

Malware Config

Extracted

Family

systembc

C2

45.15.156.213:4277

192.168.1.28:4277

Targets

    • Target

      1240-54-0x0000000000400000-0x000000000094E000-memory.dmp

    • Size

      5.3MB

    • MD5

      40560f7a821efbc9f4a3c3e61322e2af

    • SHA1

      48c743eedc80ca03a6c455477bc1f1e8567fc67d

    • SHA256

      e8743ff07230f004bd6b39aa2cc01d49918b09f63268eb397e34549496e0b249

    • SHA512

      6396b7784e50b2096ead1491ae0340e0f6a6674f6651bc28009c32ee80e7921ee52f8b7b18c3dba16161587e61cf64516be7a23f87acfbe93d8d77b28d578e73

    • SSDEEP

      98304:Uj9YYO4CrXY9HpBlwBvEYvGsLHrI21tjFHpojkI:brXY9JBovEALHrIUJXI

    Score
    10/10
    systembcthemidatrojan

    • SystemBC

      SystemBC is a proxy and remote administration tool first seen in 2019.

      trojansystembc

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

      themida
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks