systembc | 06131d9a214a318897fd7f150fcbba6d7d66b8d39b3a366ff8c34d9090109e30 | Triage

Sharing

General

Target

06131d9a214a318897fd7f150fcbba6d7d66b8d39b3a366ff8c34d9090109e30
Size

5KB
Sample

240830-pfs2xavcrp
MD5

3ff6a0d97081381a6702d0d8755da6c0
SHA1

8005dd2abf0a59f965e1b7766de5ed8eb572e56f
SHA256

06131d9a214a318897fd7f150fcbba6d7d66b8d39b3a366ff8c34d9090109e30
SHA512

5e18ed61fba9249b932cf2ae4b1f2382f6711c16b7f239d01f1cd2528a892f2cd62fe0a058aba6664e1c2847c3e5740e8e7c517ca1aecfc9e3ea0c8bb86bd701
SSDEEP

96:Z1L6XLs0ACUc2hEcDS7sn94IUGSn0qyB/GS0b7imRaeYfKkabeZnd/PBZZ5Kuml4:ZV6XPACUcIE2Asn2fGkpiGoTabend/Pb

Score

10^/10

systembc discovery persistence

Malware Config

Extracted

Family

systembc

C2

137.220.61.94:4001

Targets

- Target
  
  9493b512d7d15510ebee5b300c55b67f9f2ff1dda64bddc99ba8ba5024113300
- Size
  
  10KB
- MD5
  
  ed44877077716103973cbbebd531f38e
- SHA1
  
  ceb8c699a57193aa3be2a1766b03050cde3c738a
- SHA256
  
  9493b512d7d15510ebee5b300c55b67f9f2ff1dda64bddc99ba8ba5024113300
- SHA512
  
  fc8d6ba5b6d4808b6ad3f5ff727d0edbcff990a4687d222247d57cd75645a21d3c78bbb48643aecf468f1f4a86260c8d748b997892de48c836791fbde4e0b741
- SSDEEP
  
  192:FbzvTqUmLLGHaqeAY82mNZZZ1eLPPx9f0LNvFCDkoh:FP2UmXGHaqX22ZZ0LHL0N0ko
Score

6^/10

persistence discovery
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence