Overview

overview

10

Static

static

3

265f75c360...0N.exe

windows7-x64

10

265f75c360...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    265f75c360558369270a6b00ec2fe380N.exe

  • Size

    6.5MB

  • Sample

    240726-s2svtazfnc

  • MD5

    265f75c360558369270a6b00ec2fe380

  • SHA1

    c35c2386113a19e04df22bed4f562e216db72d53

  • SHA256

    9c1edc3cef7b26dd3cb0a9f87747d85f6353fbcb2a6c4caf3b8817729ff9c480

  • SHA512

    7915c57a24dc22879bb2ecfb77d65e3af686a656f1cfc3eef9266496f71ce80f9434d0ad3fbeb098d0568735d1e6e3b3a57479b2f5cb3fcd43960d3e856ec3a1

  • SSDEEP

    196608:POGGboDc4QO0E2A3zYxOZsOdTDvdbO4TPh9:POnboDrQxEfjsOT3v1OOf

Score
10/10
socks5systemzbotnetdiscovery

Malware Config

Targets

    • Target

      265f75c360558369270a6b00ec2fe380N.exe

    • Size

      6.5MB

    • MD5

      265f75c360558369270a6b00ec2fe380

    • SHA1

      c35c2386113a19e04df22bed4f562e216db72d53

    • SHA256

      9c1edc3cef7b26dd3cb0a9f87747d85f6353fbcb2a6c4caf3b8817729ff9c480

    • SHA512

      7915c57a24dc22879bb2ecfb77d65e3af686a656f1cfc3eef9266496f71ce80f9434d0ad3fbeb098d0568735d1e6e3b3a57479b2f5cb3fcd43960d3e856ec3a1

    • SSDEEP

      196608:POGGboDc4QO0E2A3zYxOZsOdTDvdbO4TPh9:POnboDrQxEfjsOT3v1OOf

    Score
    10/10
    socks5systemzbotnetdiscovery

    • Detect Socks5Systemz Payload

    • Socks5Systemz

      Socks5Systemz is a botnet written in C++.

      botnetsocks5systemz

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks