Overview

overview

10

Static

static

10

wizard.dll

windows7-x64

8

wizard.dll

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    16112023_2055_wizard_systembc.zip

  • Size

    8KB

  • Sample

    231116-p5vl2add2w

  • MD5

    4839cf7cf6b828cd5f2f920510b2356e

  • SHA1

    be3459d3d16fee82011e0af0dee3e5dcae45472a

  • SHA256

    9124ff5f4b0866441bcb1d0bdc93c80e7d5eb09700ecb05daa68c38a12ab54bb

  • SHA512

    90b6dd45028d1fe1c25a8d438ed51b5e0cb8a1d042825d09f9021b15c0a5845b76e00788d6b46808aef925d7d8300590294aa41432e510a54ac2e796149884f1

  • SSDEEP

    192:BhXdwT+lq5a6cbQmKy3D9rsGsNcQOiXadTpKLKzatO9DI:fCT+lB6WKyT2tNxjXa2LKzd9DI

Score
10/10
systembc

Malware Config

Extracted

Family

systembc

C2

62.173.140.37:4001

Targets

    • Target

      wizard.cpl

    • Size

      16KB

    • MD5

      cac81707eba1be452f548e410275a0ac

    • SHA1

      dd4b3bbd8bf357bbdeeb593e94ff0bf9b5ae19f2

    • SHA256

      2f120d396f71ff9adb8fe11f0b529e8ddea8355837d955fed83bb0ae2a35de84

    • SHA512

      01b6b45ec3c5ef4a0162164dfd69c15b08ed37082778ef97d0f1486bc82b4b1659a90705a4d9be42b9d25c8776e20011845a9f5e4498400b11cf14a3310df8d7

    • SSDEEP

      192:RniGhkfGBpFH+Z0hZ1WW8B52daFX4/PqfZSCG0GGGdWoBrSKja1cDHs:Y/fAeZ0hZwW42doxR3gWoBrtW1c

    Score
    8/10

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks