General

  • Target

    8f703dbe94ad3c9bfee41a6b920cd7765f0a948cae9bdf196b080253411a5d23

  • Size

    576KB

  • Sample

    230907-g6q18sfa4s

  • MD5

    8be029b88548450edb5e6b65a60cbfc9

  • SHA1

    59d11404e51389f8bbadbd32cfdc574834fa1be4

  • SHA256

    8f703dbe94ad3c9bfee41a6b920cd7765f0a948cae9bdf196b080253411a5d23

  • SHA512

    7fadf75177261266ba0e5a24564bbbb0edbe5daaecd45ba022f9dbf11a7b86564b48782ba0a62a5462fccd1b5f7c084133f371a3480f55611a91740483977fb0

  • SSDEEP

    6144:hoM4GN9CrePDrDKRpBfseCNcSi0b/P/WX3CPyEZlLomCRtoK2H+7yqz0F7eqn:3N9FPDrDKRDEeCnpT/WX3y7O4F7

Score
10/10

Malware Config

Extracted

Family

systembc

C2

mxstat215dm.xyz:4044

mxstex725dm.xyz:4044

Targets

    • Target

      8f703dbe94ad3c9bfee41a6b920cd7765f0a948cae9bdf196b080253411a5d23

    • Size

      576KB

    • MD5

      8be029b88548450edb5e6b65a60cbfc9

    • SHA1

      59d11404e51389f8bbadbd32cfdc574834fa1be4

    • SHA256

      8f703dbe94ad3c9bfee41a6b920cd7765f0a948cae9bdf196b080253411a5d23

    • SHA512

      7fadf75177261266ba0e5a24564bbbb0edbe5daaecd45ba022f9dbf11a7b86564b48782ba0a62a5462fccd1b5f7c084133f371a3480f55611a91740483977fb0

    • SSDEEP

      6144:hoM4GN9CrePDrDKRpBfseCNcSi0b/P/WX3CPyEZlLomCRtoK2H+7yqz0F7eqn:3N9FPDrDKRDEeCnpT/WX3y7O4F7

    Score
    10/10
    • SystemBC

      SystemBC is a proxy and remote administration tool first seen in 2019.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks