General

  • Target

    16112023_2055_wizard_systembc.zip

  • Size

    8KB

  • MD5

    4839cf7cf6b828cd5f2f920510b2356e

  • SHA1

    be3459d3d16fee82011e0af0dee3e5dcae45472a

  • SHA256

    9124ff5f4b0866441bcb1d0bdc93c80e7d5eb09700ecb05daa68c38a12ab54bb

  • SHA512

    90b6dd45028d1fe1c25a8d438ed51b5e0cb8a1d042825d09f9021b15c0a5845b76e00788d6b46808aef925d7d8300590294aa41432e510a54ac2e796149884f1

  • SSDEEP

    192:BhXdwT+lq5a6cbQmKy3D9rsGsNcQOiXadTpKLKzatO9DI:fCT+lB6WKyT2tNxjXa2LKzd9DI

Score
10/10

Malware Config

Extracted

Family

systembc

C2

62.173.140.37:4001

Signatures

  • Systembc family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 16112023_2055_wizard_systembc.zip
    .zip

    Password: infected

  • wizard.cpl
    .dll windows:4 windows x86 arch:x86

    Password: infected

    ea47177789465ada573c717425469cd1


    Headers

    Imports

    Exports

    Sections