Overview

overview

10

Static

static

5

ab1f9ea02b...6a.elf

ubuntu-22.04-amd64

10

Analysis

  • max time kernel
    130s
  • max time network
    147s
  • platform
    ubuntu-22.04_amd64
  • resource
    ubuntu2204-amd64-20240522.1-en
  • resource tags

    arch:amd64arch:i386image:ubuntu2204-amd64-20240522.1-enkernel:5.15.0-105-genericlocale:en-usos:ubuntu-22.04-amd64system
  • submitted
    29-01-2025 03:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ab1f9ea02bfb108fc731401a0039317863df59dd3e90bbf86a3f278db59b506a.elf

  • Size

    5KB

  • MD5

    7284354201465b12af52af85c48f0873

  • SHA1

    e38cedde94924dbeda9f090a12371fb3e02cdff2

  • SHA256

    ab1f9ea02bfb108fc731401a0039317863df59dd3e90bbf86a3f278db59b506a

  • SHA512

    377310532d762ff8c45bad91757ed2a43713716a970ee99478edb622be95c40c71e91a1ce145d4f163ace5702c610e83978d7178b0718b3e49dae1e10dae6cc0

  • SSDEEP

    96:G2Iea88uCQ/FnlFDUr/b8huWjRBpeeLWv9m+iQeBkm4LiDHdCisY4v/au:G2XCQtlVy8huWdlyv9m+iQUuLiD9C1v5

Score
10/10
systembcdiscoverytrojan

Malware Config

Extracted

Family

systembc

C2

79.110.62.222

Signatures

  • SystemBC

    SystemBC is a proxy and remote administration tool first seen in 2019.

    trojansystembc
  • Systembc family
    systembc
  • Reads runtime system information 1 IoCs

    Reads data from /proc virtual filesystem.

    discovery

Processes

  • /tmp/ab1f9ea02bfb108fc731401a0039317863df59dd3e90bbf86a3f278db59b506a.elf
    /tmp/ab1f9ea02bfb108fc731401a0039317863df59dd3e90bbf86a3f278db59b506a.elf
    1⤵
    • Reads runtime system information
    PID:1554

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads