systembc | 8ec28be6df1f0523887eb852fb19658b34bbeaf21c525be090666dd55b470a13 | Triage

Sharing

General

Target

redit.exe
Size

402KB
Sample

230318-zsnm3adg29
MD5

7a07a5960a95b97a88558b9d95c8d242
SHA1

46c4850a9a75adf910c80507849a9329dbe861a4
SHA256

8ec28be6df1f0523887eb852fb19658b34bbeaf21c525be090666dd55b470a13
SHA512

c9282552cf6be663afbd6d0f4abd19301146836b00cb502c094d0ed3eb8b6b7d7fcaf105ab1ff6b4a8745749982f56a1d486b51ce29d6c08f9daaf7643114139
SSDEEP

3072:PI/YQk4jV9/QazsdKCj7/2oDnbA6I9Drxi6NxTY9qo+v5YFj7/2oDnbA6I9Drxiv:kPHnrsdKCWqn3win97PWqn3win97DZ

Score

10^/10

systembc trojan

Malware Config

Extracted

Family

systembc

C2

212.118.36.165:4193

46.151.26.42:4193

Targets

- Target
  
  redit.exe
- Size
  
  402KB
- MD5
  
  7a07a5960a95b97a88558b9d95c8d242
- SHA1
  
  46c4850a9a75adf910c80507849a9329dbe861a4
- SHA256
  
  8ec28be6df1f0523887eb852fb19658b34bbeaf21c525be090666dd55b470a13
- SHA512
  
  c9282552cf6be663afbd6d0f4abd19301146836b00cb502c094d0ed3eb8b6b7d7fcaf105ab1ff6b4a8745749982f56a1d486b51ce29d6c08f9daaf7643114139
- SSDEEP
  
  3072:PI/YQk4jV9/QazsdKCj7/2oDnbA6I9Drxi6NxTY9qo+v5YFj7/2oDnbA6I9Drxiv:kPHnrsdKCWqn3win97PWqn3win97DZ
Score

10^/10

systembc trojan
- SystemBC
  SystemBC is a proxy and remote administration tool first seen in 2019.
  trojan systembc
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2