Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

20bb118569...b8.exe

windows7-x64

10

20bb118569...b8.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    20bb118569b859e64feaaf30227e04b8.exe

  • Size

    468KB

  • Sample

    231012-pgh84ahg8t

  • MD5

    20bb118569b859e64feaaf30227e04b8

  • SHA1

    3fb2c608529575ad4b06770e130eb9d2d0750ed7

  • SHA256

    c1d2e8b7b961e48a1ee4877d3f527f038697e0dfcda69b8cd470900b73e1e674

  • SHA512

    567906d7b98058ec24c1455d5167ee13127ce6739350f1f38954c01e46f96ba0851d6c88ef49a192edb53c5f759ab8663c7ac9fcc795c35db98165d11259587c

  • SSDEEP

    12288:dSR2NCo5jqK0UwKya66xXPeOuesG17eVpD0B5BbXv3VlRU3nFRg+e:5NCo5jqK0UwKya66xXPeOuersP07Bj3Z

Score
10/10
systembctrojan

Malware Config

Extracted

Family

systembc

C2

mxstat215dm.xyz:4044

mxstex725dm.xyz:4044

Targets

    • Target

      20bb118569b859e64feaaf30227e04b8.exe

    • Size

      468KB

    • MD5

      20bb118569b859e64feaaf30227e04b8

    • SHA1

      3fb2c608529575ad4b06770e130eb9d2d0750ed7

    • SHA256

      c1d2e8b7b961e48a1ee4877d3f527f038697e0dfcda69b8cd470900b73e1e674

    • SHA512

      567906d7b98058ec24c1455d5167ee13127ce6739350f1f38954c01e46f96ba0851d6c88ef49a192edb53c5f759ab8663c7ac9fcc795c35db98165d11259587c

    • SSDEEP

      12288:dSR2NCo5jqK0UwKya66xXPeOuesG17eVpD0B5BbXv3VlRU3nFRg+e:5NCo5jqK0UwKya66xXPeOuersP07Bj3Z

    Score
    10/10
    systembctrojan

    • SystemBC

      SystemBC is a proxy and remote administration tool first seen in 2019.

      trojansystembc

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks