systembc | b0c6f6cc4074ef506b5774fb2ce5327af9e2223c193b9b0c74189e553c94f1f1 | Triage

Sharing

General

Target

e05450882b77b27ffde9c694a43568391419da965f68bd8f9dcecad9df83c8ec.bin.sample.gz
Size

5KB
Sample

240924-t3whrstbjp
MD5

a2fbacff9218dd107ed9add56853cc55
SHA1

1422d184741e97b1feee0630e6a2200569ad4268
SHA256

b0c6f6cc4074ef506b5774fb2ce5327af9e2223c193b9b0c74189e553c94f1f1
SHA512

619435a64a965ca6b6ae1a41e5f8ae48e5b1ed07cb1b7a0041fc25fdeaca0a4c52580d79963aafcdb5b4f524f4cb962fea0e6a7c5dba998a7d253fe5d17461bc
SSDEEP

96:XVUu3c2YNnWN4APpzhvTU3uyKcQZITItxLq/13Z9YUYULCF5yd1Evx:2us7+JhvTAteIkjLq/1J5YUckX4x

Score

10^/10

systembc discovery persistence

Malware Config

Extracted

Family

systembc

C2

127.0.0.1:4350

Targets

- Target
  
  sample
- Size
  
  10KB
- MD5
  
  f9f442a4b86baebfcf39a24eeb39d48b
- SHA1
  
  b316ea6e8de46a530b09e295c7b3e44ae4fbd60f
- SHA256
  
  e05450882b77b27ffde9c694a43568391419da965f68bd8f9dcecad9df83c8ec
- SHA512
  
  db72706a96bd17da0e474c86aaf3b1f902846e222870c75d9e4659fda3a17be6d7025ef2f68ac7233812e54d40602cb0f7af7f0fe79d1a3fc0a38d4494dd2e69
- SSDEEP
  
  192:F8fzqMmTL+f6eeAY82mNZRZ1eLP/x1fkNvFCDko:F8GMmv+f6eX22RZ0LXTsN0ko
Score

6^/10

persistence discovery
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence