Overview

overview

10

Static

static

10

1000-1202-...ry.exe

windows7-x64

1

1000-1202-...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1000-1202-0x0000000000400000-0x0000000000407000-memory.dmp

  • Size

    28KB

  • MD5

    3480f71fe4d11d602971ac4a7c387618

  • SHA1

    5341f91d5b23ae2d4898c8053a37585c72314fde

  • SHA256

    f19446fb05c6e1699f733bea6eb4e8dd737bbbf26fb355ec2d94c300918f8e2c

  • SHA512

    86f1e443e15cb729b0f47ac9eb88891fd97f14ab0a1fd61adeacd10a60e256e0da9054958e578eef0fb2413b7e52bb0a356f519837c83748f11c2dd740f6030e

  • SSDEEP

    192:0cG7C70KVYmEDmSv+ShxlxCB5jNw56Ngau4eeA8u1V9oDsyQq9Eg:0ZKGmESEH3s5jNIFauyAHVbyl9n

Score
10/10
systembc

Malware Config

Extracted

Family

systembc

C2

wodresomdaymomentum.org

Attributes
  • dns

    5.132.191.104

Signatures

  • Systembc family
    systembc
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1000-1202-0x0000000000400000-0x0000000000407000-memory.dmp
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections