systembc | 0d6ce18f06c63db09a1691fec3b07c4995c7188fa4e31ee0b93f9c04c9f86f97 | Triage

Sharing

General

Target

eab6164feb7d381e1562600465759fbe_JaffaCakes118
Size

129KB
Sample

240919-gm4szsthlr
MD5

eab6164feb7d381e1562600465759fbe
SHA1

72b645113831a1560c01b424267b5ce5ea37618c
SHA256

0d6ce18f06c63db09a1691fec3b07c4995c7188fa4e31ee0b93f9c04c9f86f97
SHA512

9e5bdb1bba697f443330ec4dad6e9109e3a70ade1c9129b1259cf54532f52218bb1b470dca78815143635c89036acd79581edf6090cda874f2d364eb46de4aee
SSDEEP

1536:+q5TGp6BnjYkHIFp/Qgg2yIgznPb67VPVNJQChVO5Wcs24qz:+mkFp/Qgg3TznDENnhVO5Wce

Score

10^/10

systembc discovery trojan

Malware Config

Extracted

Family

systembc

C2

91.243.83.73

Attributes

dns
5.132.191.104

Targets

- Target
  
  eab6164feb7d381e1562600465759fbe_JaffaCakes118
- Size
  
  129KB
- MD5
  
  eab6164feb7d381e1562600465759fbe
- SHA1
  
  72b645113831a1560c01b424267b5ce5ea37618c
- SHA256
  
  0d6ce18f06c63db09a1691fec3b07c4995c7188fa4e31ee0b93f9c04c9f86f97
- SHA512
  
  9e5bdb1bba697f443330ec4dad6e9109e3a70ade1c9129b1259cf54532f52218bb1b470dca78815143635c89036acd79581edf6090cda874f2d364eb46de4aee
- SSDEEP
  
  1536:+q5TGp6BnjYkHIFp/Qgg2yIgznPb67VPVNJQChVO5Wcs24qz:+mkFp/Qgg3TznDENnhVO5Wce
Score

10^/10

systembc discovery trojan
- SystemBC
  SystemBC is a proxy and remote administration tool first seen in 2019.
  trojan systembc
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

systembcdiscoverytrojan

behavioral2

systembcdiscoverytrojan