systembc | e1ea0c959e41ed64704af80b5887dc03c4c9cbe0916b62a4f3a8117ae0fd47de | Triage

Sharing

General

Target

e1ea0c959e41ed64704af80b5887dc03c4c9cbe0916b62a4f3a8117ae0fd47de
Size

6.2MB
Sample

230802-edvslsdf5x
MD5

f799870809fc731deadbf22963fc79e7
SHA1

7b45fc33a1ef106c74bd08dee2e520b54851a857
SHA256

e1ea0c959e41ed64704af80b5887dc03c4c9cbe0916b62a4f3a8117ae0fd47de
SHA512

c462ab8a9e4b5b4fddbc9f54e9cf3cdc542a00d6ed655b6c8fd20a7cd36761216cde0fd1e9843ebc79607123ea1f8b62d17184a1ee60e569457a74a781e3d40f
SSDEEP

98304:INR0Htm6k8kgS4PKjGizeNqPgOsAW9ds0B3bKaZ+otr6qsR0bNDJcWoeel5VAd5m:IbxmS4PR2gOs3dbBL9r6q+EmL

Score

10^/10

systembc trojan

Malware Config

Extracted

Family

systembc

C2

5.42.65.67:4298

localhost.exchange:4298

Targets

- Target
  
  e1ea0c959e41ed64704af80b5887dc03c4c9cbe0916b62a4f3a8117ae0fd47de
- Size
  
  6.2MB
- MD5
  
  f799870809fc731deadbf22963fc79e7
- SHA1
  
  7b45fc33a1ef106c74bd08dee2e520b54851a857
- SHA256
  
  e1ea0c959e41ed64704af80b5887dc03c4c9cbe0916b62a4f3a8117ae0fd47de
- SHA512
  
  c462ab8a9e4b5b4fddbc9f54e9cf3cdc542a00d6ed655b6c8fd20a7cd36761216cde0fd1e9843ebc79607123ea1f8b62d17184a1ee60e569457a74a781e3d40f
- SSDEEP
  
  98304:INR0Htm6k8kgS4PKjGizeNqPgOsAW9ds0B3bKaZ+otr6qsR0bNDJcWoeel5VAd5m:IbxmS4PR2gOs3dbBL9r6q+EmL
Score

10^/10

systembc trojan
- SystemBC
  SystemBC is a proxy and remote administration tool first seen in 2019.
  trojan systembc
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2