General

  • Target

    e81eb1aa5f7cc18edfc067fc6f3966c1ed561887910693fa88679d9b43258133.bin.sample.gz

  • Size

    8KB

  • Sample

    231114-pngnvaba83

  • MD5

    a5a30b315eb268720d5fd378a73ae42e

  • SHA1

    58cea99815eca729a81c667a55fe8abdbc981074

  • SHA256

    22aee66b70800c2aa52dee896d6b4d88910aae8085d0d71a646a578cbf2a888d

  • SHA512

    a8faddfeceeb1aee72791b9fbcdd4b80c716b7ac8612b16c1034882dc95590cd567c98ef3f9b6d7ad04e8f5a44d00da206be552e30232cc4ac9ad77c183ad1e1

  • SSDEEP

    192:EGuNDhmgWmeRX3Cttb8tZ2Xd6oOnT6YPH0HEI4tGbcLnLbKKnO:EGuNDkwaittb8ykoE0EI42cLn/3nO

Score
10/10

Malware Config

Extracted

Family

systembc

C2

payload.su:4001

gam0ver.ru:4001

Targets

    • Target

      sample

    • Size

      16KB

    • MD5

      ec89c69388ba6d574ffbf49bc71567a1

    • SHA1

      9725f9ccd393a1e01d848e90975ac8cac66f1916

    • SHA256

      e81eb1aa5f7cc18edfc067fc6f3966c1ed561887910693fa88679d9b43258133

    • SHA512

      8f359875541427ea49b2030c6969f4c9d7e90dc173b3a373cd35b920b123e84d996098d1a139511da654204a26a00b9680386648e7cd92aa2d014bfcd97ef81a

    • SSDEEP

      384:rC+AHNZw/WnlrobdglGbLMoy+yG+yir1dV:r0gklrydgQP1yO67V

    Score
    10/10
    • SystemBC

      SystemBC is a proxy and remote administration tool first seen in 2019.

    • Executes dropped EXE

MITRE ATT&CK Matrix

Tasks