General

  • Target

    684470300c4b90bbb227c45a182ac650N.exe

  • Size

    4.3MB

  • Sample

    240803-hze6tswepn

  • MD5

    684470300c4b90bbb227c45a182ac650

  • SHA1

    ce7105100a3c680dc818710b75374ff742720278

  • SHA256

    6cf660335530817ddbf899f3b37d846937262a7212e24ce6313c0790fd8fe132

  • SHA512

    ecef3b272d2d6eee95b7d4cb8d5b5c4798ccc542a185f35b2007cea18cb8acef05952f93b739d6bf7a8a30ab2cce3a3334d4275f3cfc5056c0175fd00e837999

  • SSDEEP

    98304:NInbEpV4AZefRatOfCbifJF+DLfusnnKsGqJRmYdI:V44eJatOkg+fFnKsGuS

Malware Config

Targets

    • Target

      684470300c4b90bbb227c45a182ac650N.exe

    • Size

      4.3MB

    • MD5

      684470300c4b90bbb227c45a182ac650

    • SHA1

      ce7105100a3c680dc818710b75374ff742720278

    • SHA256

      6cf660335530817ddbf899f3b37d846937262a7212e24ce6313c0790fd8fe132

    • SHA512

      ecef3b272d2d6eee95b7d4cb8d5b5c4798ccc542a185f35b2007cea18cb8acef05952f93b739d6bf7a8a30ab2cce3a3334d4275f3cfc5056c0175fd00e837999

    • SSDEEP

      98304:NInbEpV4AZefRatOfCbifJF+DLfusnnKsGqJRmYdI:V44eJatOkg+fFnKsGuS

    • Detect Socks5Systemz Payload

    • Socks5Systemz

      Socks5Systemz is a botnet written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks