Overview

overview

10

Static

static

3

8b094f4a3c...a9.exe

windows7-x64

10

8b094f4a3c...a9.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8b094f4a3c05e51cad6570696b6ddca105627121fc90d35a89dc6c1b5b4ae5a9.exe

  • Size

    7.8MB

  • Sample

    241211-hdn7lswlfl

  • MD5

    71c28b5512c71ccb907789d6fd6af859

  • SHA1

    b04c866bfd370663a2805d781609896719c11bbe

  • SHA256

    8b094f4a3c05e51cad6570696b6ddca105627121fc90d35a89dc6c1b5b4ae5a9

  • SHA512

    d0791e34e786320fcace79dd6b01b0163d01649df5ba1b1f30a4b5d24ae1ca619e1de8758de0f3169cc20f7be11572bf23d4f001ca4118a066b86a6d9911b5dc

  • SSDEEP

    196608:tmCyyr0Em5/6rNUpNvBLrKVgF6mM0tFT31KdifTcd:tYyr0EyZpNvJAtU1Fro

Score
10/10
socks5systemzbotnetdiscovery

Malware Config

Targets

    • Target

      8b094f4a3c05e51cad6570696b6ddca105627121fc90d35a89dc6c1b5b4ae5a9.exe

    • Size

      7.8MB

    • MD5

      71c28b5512c71ccb907789d6fd6af859

    • SHA1

      b04c866bfd370663a2805d781609896719c11bbe

    • SHA256

      8b094f4a3c05e51cad6570696b6ddca105627121fc90d35a89dc6c1b5b4ae5a9

    • SHA512

      d0791e34e786320fcace79dd6b01b0163d01649df5ba1b1f30a4b5d24ae1ca619e1de8758de0f3169cc20f7be11572bf23d4f001ca4118a066b86a6d9911b5dc

    • SSDEEP

      196608:tmCyyr0Em5/6rNUpNvBLrKVgF6mM0tFT31KdifTcd:tYyr0EyZpNvJAtU1Fro

    Score
    10/10
    socks5systemzbotnetdiscovery

    • Detect Socks5Systemz Payload

    • Socks5Systemz

      Socks5Systemz is a botnet written in C++.

      botnetsocks5systemz

    • Socks5systemz family

      socks5systemz

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks