General

  • Target

    1bb8bba64c918c6a852ff2aeb29abb2e10e021bc029993d1e797141f7d94d992.exe

  • Size

    5.9MB

  • Sample

    241112-vds7saxbjp

  • MD5

    756e67db5ad879a1a225df716b3e380b

  • SHA1

    25659dea8b54c8680b38f5f78f2ea9b956aa2020

  • SHA256

    1bb8bba64c918c6a852ff2aeb29abb2e10e021bc029993d1e797141f7d94d992

  • SHA512

    87401ece2c84224842f2877315d0cecff89eb562f7aeb8f558bd1f574f3bdadbfbb8844966617b795d2aa892d069264f8ef71087082cb340902c65480a01de72

  • SSDEEP

    98304:44pRM/WvdCKRLFqB6UyjPiQVXmzdGhIE4dMfeLn3LRiIgzjYcxL2ymL+8AZbO1V1:5pR4WvzUyjPiYWzdldLL7ezjNbm+ZbOd

Malware Config

Targets

    • Target

      1bb8bba64c918c6a852ff2aeb29abb2e10e021bc029993d1e797141f7d94d992.exe

    • Size

      5.9MB

    • MD5

      756e67db5ad879a1a225df716b3e380b

    • SHA1

      25659dea8b54c8680b38f5f78f2ea9b956aa2020

    • SHA256

      1bb8bba64c918c6a852ff2aeb29abb2e10e021bc029993d1e797141f7d94d992

    • SHA512

      87401ece2c84224842f2877315d0cecff89eb562f7aeb8f558bd1f574f3bdadbfbb8844966617b795d2aa892d069264f8ef71087082cb340902c65480a01de72

    • SSDEEP

      98304:44pRM/WvdCKRLFqB6UyjPiQVXmzdGhIE4dMfeLn3LRiIgzjYcxL2ymL+8AZbO1V1:5pR4WvzUyjPiYWzdldLL7ezjNbm+ZbOd

    • Detect Socks5Systemz Payload

    • Socks5Systemz

      Socks5Systemz is a botnet written in C++.

    • Socks5systemz family

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks