General

  • Target

    NEAS.3ae62bc5ec965577dbb25a3065edc53c2d779641ac985de0b822a5debac44d92exe_JC.exe

  • Size

    405KB

  • Sample

    231024-ygxk6ahc91

  • MD5

    158affdb2a85c2c74a6978d7c9f8a600

  • SHA1

    cbc88a79f365607e998cac233c086696a7eaa8bc

  • SHA256

    3ae62bc5ec965577dbb25a3065edc53c2d779641ac985de0b822a5debac44d92

  • SHA512

    56ff990ba8df352190c3661a65043cf2289e1a3126eba4dd00c22f9ec7d6dd3a36e92c73e49b478f18b35df1598c3cfcb9ce12d8d4a60d0eee11a155ba54706f

  • SSDEEP

    6144:qfjwiuBOwL8qlyO1sccMNQzS4c7+QdlnFL/Jsh2fePxFgm8WtrgFVA:EjwnBOwQ0sHrzS4pQzFa4mgm8WqFVA

Score
10/10

Malware Config

Extracted

Family

systembc

C2

mxstat215dm.xyz:4044

mxstex725dm.xyz:4044

Targets

    • Target

      NEAS.3ae62bc5ec965577dbb25a3065edc53c2d779641ac985de0b822a5debac44d92exe_JC.exe

    • Size

      405KB

    • MD5

      158affdb2a85c2c74a6978d7c9f8a600

    • SHA1

      cbc88a79f365607e998cac233c086696a7eaa8bc

    • SHA256

      3ae62bc5ec965577dbb25a3065edc53c2d779641ac985de0b822a5debac44d92

    • SHA512

      56ff990ba8df352190c3661a65043cf2289e1a3126eba4dd00c22f9ec7d6dd3a36e92c73e49b478f18b35df1598c3cfcb9ce12d8d4a60d0eee11a155ba54706f

    • SSDEEP

      6144:qfjwiuBOwL8qlyO1sccMNQzS4c7+QdlnFL/Jsh2fePxFgm8WtrgFVA:EjwnBOwQ0sHrzS4pQzFa4mgm8WqFVA

    Score
    10/10
    • SystemBC

      SystemBC is a proxy and remote administration tool first seen in 2019.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks