General

  • Target

    7177acd8a2b07f743dffb49442833163846c0f6e3f41056aef83a89185f0b743

  • Size

    258KB

  • Sample

    230821-q1y94aeg8x

  • MD5

    59d87693d6d2331e75665972353331bc

  • SHA1

    1d386ea5a83d96528071a667d96ca2deba87802f

  • SHA256

    7177acd8a2b07f743dffb49442833163846c0f6e3f41056aef83a89185f0b743

  • SHA512

    d35cf0974a9a2ad1b53aaa71d8b2a5738567d850ad74a423da05ec048455ea9dd57c9939fb97410c36eeb51780f04c261bab5ad053661db91fe38c9ea7f7965d

  • SSDEEP

    6144:/A2ZQ0dDxUQePwXiGZ3E8UUNIfUt+B8UTR/XMFKT0T:/A+NePwXiGZ3EzE0dGsRPMFz

Score
10/10

Malware Config

Extracted

Family

systembc

C2

mxstat215dm.xyz:4044

mxstex725dm.xyz:4044

Targets

    • Target

      7177acd8a2b07f743dffb49442833163846c0f6e3f41056aef83a89185f0b743

    • Size

      258KB

    • MD5

      59d87693d6d2331e75665972353331bc

    • SHA1

      1d386ea5a83d96528071a667d96ca2deba87802f

    • SHA256

      7177acd8a2b07f743dffb49442833163846c0f6e3f41056aef83a89185f0b743

    • SHA512

      d35cf0974a9a2ad1b53aaa71d8b2a5738567d850ad74a423da05ec048455ea9dd57c9939fb97410c36eeb51780f04c261bab5ad053661db91fe38c9ea7f7965d

    • SSDEEP

      6144:/A2ZQ0dDxUQePwXiGZ3E8UUNIfUt+B8UTR/XMFKT0T:/A+NePwXiGZ3EzE0dGsRPMFz

    Score
    10/10
    • SystemBC

      SystemBC is a proxy and remote administration tool first seen in 2019.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks