systembc | 0b0466996b77c223295a05899525df93489cfda27c7c95b78bec4c6a595629d5 | Triage

Resubmissions

07-05-2024 12:39

240507-pvlldaga51 10

07-05-2024 12:38

240507-pvh59aaf49 10

07-05-2024 12:38

240507-pvf1wsga5w 10

07-05-2024 12:38

240507-pvfecsga5s 10

07-05-2024 12:38

240507-pvd7asaf44 10

25-04-2024 12:54

240425-p5ektaah3x 10

Sharing

General

Target

0b0466996b77c223295a05899525df93489cfda27c7c95b78bec4c6a595629d5
Size

30KB
Sample

240507-pvfecsga5s
MD5

87968a631411cdf26058e8ae5a0902a5
SHA1

a09dc0e8855780430d10811834da6504eb1d72ad
SHA256

0b0466996b77c223295a05899525df93489cfda27c7c95b78bec4c6a595629d5
SHA512

07ce6246217a61085ae0ab7a6fade6429d7d946c4970ce79c1a7e22e1fc5f15949a09a0b04ec5bdc00cfd7bb5b11b6cfc5d8fbc9a3f39875443a1bbe7301644e
SSDEEP

768:4TwkPr8C6fuFdaAna6DCPt34GuYY92rjnPoJlvcaII1:MV8C6fuFdaz6+O1n2rjnPo7

Score

10^/10

systembc trojan

Malware Config

Extracted

Family

systembc

C2

pzlkxadvert475.xyz:4044

pzfdmserv275.xyz:4044

Targets

- Target
  
  0b0466996b77c223295a05899525df93489cfda27c7c95b78bec4c6a595629d5
- Size
  
  30KB
- MD5
  
  87968a631411cdf26058e8ae5a0902a5
- SHA1
  
  a09dc0e8855780430d10811834da6504eb1d72ad
- SHA256
  
  0b0466996b77c223295a05899525df93489cfda27c7c95b78bec4c6a595629d5
- SHA512
  
  07ce6246217a61085ae0ab7a6fade6429d7d946c4970ce79c1a7e22e1fc5f15949a09a0b04ec5bdc00cfd7bb5b11b6cfc5d8fbc9a3f39875443a1bbe7301644e
- SSDEEP
  
  768:4TwkPr8C6fuFdaAna6DCPt34GuYY92rjnPoJlvcaII1:MV8C6fuFdaz6+O1n2rjnPo7
Score

10^/10

systembc trojan
- SystemBC
  SystemBC is a proxy and remote administration tool first seen in 2019.
  trojan systembc
- Executes dropped EXE
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Uses Tor communications
  Malware can proxy its traffic through Tor for more anonymity.
behavioral1 behavioral2 behavioral3 behavioral4 behavioral5

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Proxy

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5