General

  • Target

    2ac1e9d8239dcc7ebeee184a03b86e02.exe

  • Size

    258KB

  • Sample

    231106-nz5z5sah3z

  • MD5

    2ac1e9d8239dcc7ebeee184a03b86e02

  • SHA1

    f232c24ec3da2782e0bce176e71db494c4387cc2

  • SHA256

    4106813cab1ac29a4771d7a399fd53fac78e60881d3529cf6bbc061e71f182ed

  • SHA512

    798e5baa8a54fb6edc6232c59e8f667a6cc8589a8923b909ec2d9527cd4c7e5df32ea56fc253f7a8fe2859628b0ca89fccb915e88961140260689fb055eabe32

  • SSDEEP

    6144:B1oaFO6VGsKpInz9CRpGAafwfB6GIUlixbfqsgQPaCtsAiD3Fcc:ToSmInz9CAfGBY9XtE3F

Score
10/10

Malware Config

Extracted

Family

systembc

C2

mxstat215dm.xyz:4044

mxstex725dm.xyz:4044

Targets

    • Target

      2ac1e9d8239dcc7ebeee184a03b86e02.exe

    • Size

      258KB

    • MD5

      2ac1e9d8239dcc7ebeee184a03b86e02

    • SHA1

      f232c24ec3da2782e0bce176e71db494c4387cc2

    • SHA256

      4106813cab1ac29a4771d7a399fd53fac78e60881d3529cf6bbc061e71f182ed

    • SHA512

      798e5baa8a54fb6edc6232c59e8f667a6cc8589a8923b909ec2d9527cd4c7e5df32ea56fc253f7a8fe2859628b0ca89fccb915e88961140260689fb055eabe32

    • SSDEEP

      6144:B1oaFO6VGsKpInz9CRpGAafwfB6GIUlixbfqsgQPaCtsAiD3Fcc:ToSmInz9CAfGBY9XtE3F

    Score
    10/10
    • SystemBC

      SystemBC is a proxy and remote administration tool first seen in 2019.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks