Overview

overview

10

Static

static

5

4236a29755...ef.elf

ubuntu-22.04-amd64

10

Analysis

  • max time kernel
    129s
  • max time network
    128s
  • platform
    ubuntu-22.04_amd64
  • resource
    ubuntu2204-amd64-20240729-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2204-amd64-20240729-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
  • submitted
    28-01-2025 15:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4236a29755198d43aff4675a117d51f9b3e963a53e16cb1a9d42a1760aa62fef.elf

  • Size

    5KB

  • MD5

    3b16932106c36fd5a5b7ed636f99f99e

  • SHA1

    0d4edb5254fedcaac79e763a09ad3dfe2e7f65ad

  • SHA256

    4236a29755198d43aff4675a117d51f9b3e963a53e16cb1a9d42a1760aa62fef

  • SHA512

    95c5e596c631b604842ad0c8f2eb81a47aaef26749894e67ad8a17f1678ef4630f413057639889930cd0b7d9abbfeb7a35f74f1e04172b94c2364c71d4478507

  • SSDEEP

    96:GdKYPXhZNHyYDSI4xVyVv2xZBIz6Gs3peeLWv9m+iQeBkm4LiDHdCisY4v/xlA:G4KZty4lGVyVv2xZqz0lyv9m+iQUuLix

Score
10/10
systembcdiscoverytrojan

Malware Config

Extracted

Family

systembc

C2

79.110.62.222

Signatures

  • SystemBC

    SystemBC is a proxy and remote administration tool first seen in 2019.

    trojansystembc
  • Systembc family
    systembc
  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

    discovery

Processes

  • /tmp/4236a29755198d43aff4675a117d51f9b3e963a53e16cb1a9d42a1760aa62fef.elf
    /tmp/4236a29755198d43aff4675a117d51f9b3e963a53e16cb1a9d42a1760aa62fef.elf
    1⤵
    • Reads runtime system information
    PID:1566

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads