General

  • Target

    8869e002ec807bb5dfd30c1f151b9ee871fc4a05695bb40c87718e9f55a7e67d

  • Size

    318KB

  • Sample

    230902-r9x9tsea32

  • MD5

    8d7fad90ddbaffc687f965d7eecf9a5c

  • SHA1

    f02ebd3394a56b2f06a7e381866cc9c94ff90374

  • SHA256

    8869e002ec807bb5dfd30c1f151b9ee871fc4a05695bb40c87718e9f55a7e67d

  • SHA512

    a64c7d4fb9bf4b7a7cb50355e8c09901e782e2d0f5c5cfcff4d1a93a74b25ea09372d18e5fbdbcda1d1482604009819ab3cbd85a4ba901cf670dc2c497c187fa

  • SSDEEP

    6144:jGfS3dCftUSmjZQe8i+xnQwZNByJwGAF20:qixQy+BjZXyIF20

Score
10/10

Malware Config

Extracted

Family

systembc

C2

mxstat215dm.xyz:4044

mxstex725dm.xyz:4044

Targets

    • Target

      8869e002ec807bb5dfd30c1f151b9ee871fc4a05695bb40c87718e9f55a7e67d

    • Size

      318KB

    • MD5

      8d7fad90ddbaffc687f965d7eecf9a5c

    • SHA1

      f02ebd3394a56b2f06a7e381866cc9c94ff90374

    • SHA256

      8869e002ec807bb5dfd30c1f151b9ee871fc4a05695bb40c87718e9f55a7e67d

    • SHA512

      a64c7d4fb9bf4b7a7cb50355e8c09901e782e2d0f5c5cfcff4d1a93a74b25ea09372d18e5fbdbcda1d1482604009819ab3cbd85a4ba901cf670dc2c497c187fa

    • SSDEEP

      6144:jGfS3dCftUSmjZQe8i+xnQwZNByJwGAF20:qixQy+BjZXyIF20

    Score
    10/10
    • SystemBC

      SystemBC is a proxy and remote administration tool first seen in 2019.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks