systembc | 147c50bda48e4990a67dacdfedbefba88ac59168c29b8a3b939c03b42bb3dd41 | Triage

Sharing

General

Target

3076-53-0x0000000000400000-0x000000000085B000-memory.dmp
Size

4.4MB
Sample

250211-wr9mcsvnap
MD5

204a344e71a09ebef12f1e487c8a4023
SHA1

4976104e9daf93017693ff6bcc9c058acb93de88
SHA256

147c50bda48e4990a67dacdfedbefba88ac59168c29b8a3b939c03b42bb3dd41
SHA512

3f60ce3c8116c9ac97e050124638ba71184b398d209d6c7ecb89bb44605a65173e387be900460f27736835de39c7a59aaaaab004fa5afc8f2add33f6aefac755
SSDEEP

49152:MiMzsm4mlgqSeDNQF5JCwJMlCYrehymzXX2Vny3SZ/zyu6FRTcPS:MiMzsm4mlgZeU5wwZYr0zn2sc/FGAP

Score

10^/10

systembc discovery trojan

Malware Config

Extracted

Family

systembc

C2

wodresomdaymomentum.org

Attributes

dns
5.132.191.104

Targets

- Target
  
  3076-53-0x0000000000400000-0x000000000085B000-memory.dmp
- Size
  
  4.4MB
- MD5
  
  204a344e71a09ebef12f1e487c8a4023
- SHA1
  
  4976104e9daf93017693ff6bcc9c058acb93de88
- SHA256
  
  147c50bda48e4990a67dacdfedbefba88ac59168c29b8a3b939c03b42bb3dd41
- SHA512
  
  3f60ce3c8116c9ac97e050124638ba71184b398d209d6c7ecb89bb44605a65173e387be900460f27736835de39c7a59aaaaab004fa5afc8f2add33f6aefac755
- SSDEEP
  
  49152:MiMzsm4mlgqSeDNQF5JCwJMlCYrehymzXX2Vny3SZ/zyu6FRTcPS:MiMzsm4mlgZeU5wwZYr0zn2sc/FGAP
Score

10^/10

systembc discovery trojan
- SystemBC
  SystemBC is a proxy and remote administration tool first seen in 2019.
  trojan systembc
- Systembc family
  systembc
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

systembcdiscoverytrojan