General
-
Target
247c553676181351efc357f16641102cf935550befff121536a8009ced9e9b7dN.exe
-
Size
3.5MB
-
Sample
241204-a52ysaylam
-
MD5
f7a23c2db360978b5c952d476f0499a0
-
SHA1
7c67635adaa8d13e482b8346b3c018b559befa7d
-
SHA256
247c553676181351efc357f16641102cf935550befff121536a8009ced9e9b7d
-
SHA512
61ddb73032ca3a7de59f3c8f8533ced719e35f93a45beb4d2b506b8031214a593dd7da32a0e3adbc5b040b303ed84267411f2c720d3d3c16509a3c9b1f4c694b
-
SSDEEP
98304:NrTEh1NSuHXcBr1f5eALyxAaUgZ0sXMK31V:lgdHXc3/LyVUgZ0LK3P
Malware Config
Targets
-
-
Target
247c553676181351efc357f16641102cf935550befff121536a8009ced9e9b7dN.exe
-
Size
3.5MB
-
MD5
f7a23c2db360978b5c952d476f0499a0
-
SHA1
7c67635adaa8d13e482b8346b3c018b559befa7d
-
SHA256
247c553676181351efc357f16641102cf935550befff121536a8009ced9e9b7d
-
SHA512
61ddb73032ca3a7de59f3c8f8533ced719e35f93a45beb4d2b506b8031214a593dd7da32a0e3adbc5b040b303ed84267411f2c720d3d3c16509a3c9b1f4c694b
-
SSDEEP
98304:NrTEh1NSuHXcBr1f5eALyxAaUgZ0sXMK31V:lgdHXc3/LyVUgZ0LK3P
Score10/10-
Detect Socks5Systemz Payload
-
Socks5Systemz
Socks5Systemz is a botnet written in C++.
-
Socks5systemz family
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-