systembc | 3bc9a13ed11a0da691a2b97ddd52168dbead463fd5371916a1d574184c422a3c | Triage

Submit
Reports

Overview

overview

Static

static

7

7b20822375...07.dll

windows7-x64

7b20822375...07.dll

windows10-2004-x64

Sharing

General

Target

7b20822375127aaf2c2ec9d1f07a3007.exe
Size

5.8MB
Sample

230810-xw3kaagg23
MD5

7b20822375127aaf2c2ec9d1f07a3007
SHA1

c6cc2246cb5fd04ea80c1256ceec10268b876a89
SHA256

3bc9a13ed11a0da691a2b97ddd52168dbead463fd5371916a1d574184c422a3c
SHA512

e7a843db7276164ea677ee04efcd35c2bc1c47b5c7916d32cdd2c1cf372b00b8541716875675afd56ad19536dd9f990050c4fdc5ea9c78d09476700310912f07
SSDEEP

98304:emB1kJ62BWOtIR7AzNS3mVmh/sxWruL0UUXoiEjCQYSRyEK0Upg328Vu2L8IooE:ekKI2BFBS3m0h/P/S2QYwyE13l4w5o

Score

10^/10

systembc trojan vmprotect

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

7b20822375127aaf2c2ec9d1f07a3007.dll

Resource

win7-20230712-en

systembc trojan vmprotect

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

7b20822375127aaf2c2ec9d1f07a3007.dll

Resource

win10v2004-20230703-en

systembc trojan vmprotect

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

systembc

C2

5.42.65.67:4298

localhost.exchange:4298

Targets

- Target
  
  7b20822375127aaf2c2ec9d1f07a3007.exe
- Size
  
  5.8MB
- MD5
  
  7b20822375127aaf2c2ec9d1f07a3007
- SHA1
  
  c6cc2246cb5fd04ea80c1256ceec10268b876a89
- SHA256
  
  3bc9a13ed11a0da691a2b97ddd52168dbead463fd5371916a1d574184c422a3c
- SHA512
  
  e7a843db7276164ea677ee04efcd35c2bc1c47b5c7916d32cdd2c1cf372b00b8541716875675afd56ad19536dd9f990050c4fdc5ea9c78d09476700310912f07
- SSDEEP
  
  98304:emB1kJ62BWOtIR7AzNS3mVmh/sxWruL0UUXoiEjCQYSRyEK0Upg328Vu2L8IooE:ekKI2BFBS3m0h/P/S2QYwyE13l4w5o
Score

10^/10

systembc trojan vmprotect
- SystemBC
  SystemBC is a proxy and remote administration tool first seen in 2019.
  trojan systembc
- Blocklisted process makes network request
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

systembctrojanvmprotect

behavioral2

systembctrojanvmprotect

© 2018-2024

Terms | Privacy