Overview

overview

10

Static

static

10

2536-2-0x0...ry.dll

windows7-x64

10

2536-2-0x0...ry.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2536-2-0x00007FFFA1910000-0x00007FFFA1C9D000-memory.dmp

  • Size

    3.6MB

  • Sample

    241027-tf4kvsyhkh

  • MD5

    09533e8c81f02452e5604dfafdf0b376

  • SHA1

    0a5e9e26035940f04d95e9b930584bddd31648b6

  • SHA256

    8c777bbab0ba3f129e36c205a6a1d047cce646e9252a5974f45f0bb93a9e0c05

  • SHA512

    c42b71f984e0bd48ca783187712ce629ecdc9abba01bddf93d393048183dbd0574c2a2086214b09d63a97131513f0ae81550380703d7c86c5efb1faccd884aae

  • SSDEEP

    49152:Njy6Iy3Zs9qu8moH+xNSJJ1LKz+JsK47K:o62RyLqe

Score
10/10
systembcthemidatrojan

Malware Config

Extracted

Family

systembc

C2

5.42.65.67:4298

localhost.exchange:4298

Targets

    • Target

      2536-2-0x00007FFFA1910000-0x00007FFFA1C9D000-memory.dmp

    • Size

      3.6MB

    • MD5

      09533e8c81f02452e5604dfafdf0b376

    • SHA1

      0a5e9e26035940f04d95e9b930584bddd31648b6

    • SHA256

      8c777bbab0ba3f129e36c205a6a1d047cce646e9252a5974f45f0bb93a9e0c05

    • SHA512

      c42b71f984e0bd48ca783187712ce629ecdc9abba01bddf93d393048183dbd0574c2a2086214b09d63a97131513f0ae81550380703d7c86c5efb1faccd884aae

    • SSDEEP

      49152:Njy6Iy3Zs9qu8moH+xNSJJ1LKz+JsK47K:o62RyLqe

    Score
    10/10
    systembcthemidatrojan

    • SystemBC

      SystemBC is a proxy and remote administration tool first seen in 2019.

      trojansystembc

    • Systembc family

      systembc

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

      themida
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks