Overview

overview

10

Static

static

3

9dfe5befe9...fN.exe

windows7-x64

10

9dfe5befe9...fN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9dfe5befe93a5b5ba4c0ca24ab69c0f37181044e821aba68f10650726503d4efN

  • Size

    5.4MB

  • Sample

    241108-dj99tatfqf

  • MD5

    676aff364a9d0742a346f55284122400

  • SHA1

    22a47f4cf9b525a3668554d7b65542f13c285476

  • SHA256

    9dfe5befe93a5b5ba4c0ca24ab69c0f37181044e821aba68f10650726503d4ef

  • SHA512

    f1d472c263c80c5af62113a6863ad144b39eb70e261470dc074edee4c0809b3d1dbecacd7d324ce08e1a805e8ef8a1fecf9533c91271ca441b26ad208b192072

  • SSDEEP

    98304:Cg9ciUCW/ASFdR8kW1bfTAdVi85A5sft05YSb1PMzCzM3vujC3OLQx8:X9mASFdR8kWhz8q2fK5Yyg34LLQS

Score
10/10
socks5systemzbotnetdiscovery

Malware Config

Targets

    • Target

      9dfe5befe93a5b5ba4c0ca24ab69c0f37181044e821aba68f10650726503d4efN

    • Size

      5.4MB

    • MD5

      676aff364a9d0742a346f55284122400

    • SHA1

      22a47f4cf9b525a3668554d7b65542f13c285476

    • SHA256

      9dfe5befe93a5b5ba4c0ca24ab69c0f37181044e821aba68f10650726503d4ef

    • SHA512

      f1d472c263c80c5af62113a6863ad144b39eb70e261470dc074edee4c0809b3d1dbecacd7d324ce08e1a805e8ef8a1fecf9533c91271ca441b26ad208b192072

    • SSDEEP

      98304:Cg9ciUCW/ASFdR8kW1bfTAdVi85A5sft05YSb1PMzCzM3vujC3OLQx8:X9mASFdR8kWhz8q2fK5Yyg34LLQS

    Score
    10/10
    socks5systemzbotnetdiscovery

    • Detect Socks5Systemz Payload

    • Socks5Systemz

      Socks5Systemz is a botnet written in C++.

      botnetsocks5systemz

    • Socks5systemz family

      socks5systemz

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks