General

  • Target

    16c0967b0c5ee8e3e7c393e9433f9c1692239619ab12948caba9af44180ad497N

  • Size

    4.1MB

  • Sample

    241101-t2ll6stakp

  • MD5

    c3abab85019356678fb8146f68025690

  • SHA1

    ae89062881c9a69d3350c8ea1feeb767d0da87e3

  • SHA256

    16c0967b0c5ee8e3e7c393e9433f9c1692239619ab12948caba9af44180ad497

  • SHA512

    383b3aac82a6053e5e3056561cb1c7428efb620b17d6aebd5f290c576e457387daf9560c719eaa6f3a4ac1aecdeb2455af65ff320c4345266c2214c243bd5305

  • SSDEEP

    98304:IrEJ2nTmkzOPacM7NvMkpXm2Ji7g9kvp3til4F3ouCRCi:f2T1zOCcyN0S22JiWkvxtiI3oBRp

Malware Config

Targets

    • Target

      16c0967b0c5ee8e3e7c393e9433f9c1692239619ab12948caba9af44180ad497N

    • Size

      4.1MB

    • MD5

      c3abab85019356678fb8146f68025690

    • SHA1

      ae89062881c9a69d3350c8ea1feeb767d0da87e3

    • SHA256

      16c0967b0c5ee8e3e7c393e9433f9c1692239619ab12948caba9af44180ad497

    • SHA512

      383b3aac82a6053e5e3056561cb1c7428efb620b17d6aebd5f290c576e457387daf9560c719eaa6f3a4ac1aecdeb2455af65ff320c4345266c2214c243bd5305

    • SSDEEP

      98304:IrEJ2nTmkzOPacM7NvMkpXm2Ji7g9kvp3til4F3ouCRCi:f2T1zOCcyN0S22JiWkvxtiI3oBRp

    • Detect Socks5Systemz Payload

    • Socks5Systemz

      Socks5Systemz is a botnet written in C++.

    • Socks5systemz family

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks