General

  • Target

    1137c048a4a828cd3641bd84d27ea60357ff161c7389913513c7193e5b9fbc40_JC.exe

  • Size

    245KB

  • Sample

    230821-xck6wsfc62

  • MD5

    d743b737c248670e3c103bceeff882af

  • SHA1

    a24061e5c9bcd147106b8ecc3cfb4aa847c65c6f

  • SHA256

    1137c048a4a828cd3641bd84d27ea60357ff161c7389913513c7193e5b9fbc40

  • SHA512

    8fe48b1943d3e8f540af17864de892d9d2de96fa86134164e346b0a53310ab9b0b065158824b91abec7a575686cf14b292d5d91e0dcf8dc13959f4b1ccdf5e1c

  • SSDEEP

    3072:xsHX/h6n7Sndwa/vTaV71LDL2jSw18dBIdWc/EAhmfgcoSnvdzXeEjM98pCopcw:xs3ZJndP813L218I9VMfP7vdDeEFg2c

Score
10/10

Malware Config

Extracted

Family

systembc

C2

mxstat215dm.xyz:4044

mxstex725dm.xyz:4044

Targets

    • Target

      1137c048a4a828cd3641bd84d27ea60357ff161c7389913513c7193e5b9fbc40_JC.exe

    • Size

      245KB

    • MD5

      d743b737c248670e3c103bceeff882af

    • SHA1

      a24061e5c9bcd147106b8ecc3cfb4aa847c65c6f

    • SHA256

      1137c048a4a828cd3641bd84d27ea60357ff161c7389913513c7193e5b9fbc40

    • SHA512

      8fe48b1943d3e8f540af17864de892d9d2de96fa86134164e346b0a53310ab9b0b065158824b91abec7a575686cf14b292d5d91e0dcf8dc13959f4b1ccdf5e1c

    • SSDEEP

      3072:xsHX/h6n7Sndwa/vTaV71LDL2jSw18dBIdWc/EAhmfgcoSnvdzXeEjM98pCopcw:xs3ZJndP813L218I9VMfP7vdDeEFg2c

    Score
    10/10
    • SystemBC

      SystemBC is a proxy and remote administration tool first seen in 2019.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks