General

  • Target

    563b5372c93c74f1e0268c079ece9d43.exe

  • Size

    282KB

  • Sample

    230826-j6ez3sgh94

  • MD5

    563b5372c93c74f1e0268c079ece9d43

  • SHA1

    2eb07fb4bdc826c2e865931113ed89c8bccd0042

  • SHA256

    c96f8d4d1ee675c3cd1b1cf2670bb9bc2379a6b66f3029b2ffcfdd67c612c499

  • SHA512

    6d99f68c8486d3c76d2aadb6397699fc53dec717f29a04d3d70b28300a9430b314f85239b47838887ca58918f4ad3090a5864198f2ce9b1c0b972091961c7a8e

  • SSDEEP

    3072:xzucLwe6w+whpp+I6oZoLHAyIDhrO9ZRbZ3qBIcZC1Nq4B/OZIPO/xxo+yjM98BM:0U89bSpMZRd3FcZQIZIPg4+yFDr

Score
10/10

Malware Config

Extracted

Family

systembc

C2

mxstat215dm.xyz:4044

mxstex725dm.xyz:4044

Targets

    • Target

      563b5372c93c74f1e0268c079ece9d43.exe

    • Size

      282KB

    • MD5

      563b5372c93c74f1e0268c079ece9d43

    • SHA1

      2eb07fb4bdc826c2e865931113ed89c8bccd0042

    • SHA256

      c96f8d4d1ee675c3cd1b1cf2670bb9bc2379a6b66f3029b2ffcfdd67c612c499

    • SHA512

      6d99f68c8486d3c76d2aadb6397699fc53dec717f29a04d3d70b28300a9430b314f85239b47838887ca58918f4ad3090a5864198f2ce9b1c0b972091961c7a8e

    • SSDEEP

      3072:xzucLwe6w+whpp+I6oZoLHAyIDhrO9ZRbZ3qBIcZC1Nq4B/OZIPO/xxo+yjM98BM:0U89bSpMZRd3FcZQIZIPg4+yFDr

    Score
    10/10
    • SystemBC

      SystemBC is a proxy and remote administration tool first seen in 2019.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks