socks5systemz | 3e19a6f499ec5284e0e96e22caf84dec1560ede59e8947dc95a55038982c25af | Triage

Submit
Reports

Overview

overview

Static

static

3

01ce65e363...14.exe

windows7-x64

01ce65e363...14.exe

windows10-2004-x64

Sharing

General

Target

01ce65e3634910cf04481dc24ea2ce14.exe
Size

3.6MB
Sample

250326-h2s6gasmy6
MD5

01ce65e3634910cf04481dc24ea2ce14
SHA1

c86927e6c45e4c6d260713e41e6c8a4c914e321b
SHA256

3e19a6f499ec5284e0e96e22caf84dec1560ede59e8947dc95a55038982c25af
SHA512

ccddff21fa0c35aaf8918597a3556d5adccdb06493a1ff26980b37f2cda55e01d7d30e931a20a5fb959fbadbdd320955e99b54aa34929ae7748c95a7bbd96d79
SSDEEP

98304:3geaVaKEAN7yvxYLfcTGXWq6kI0sH8LKDrvWCv9p9kw7yau:wOAxixYbCGmqzha8LtCv9Cau

Score

10^/10

socks5systemz botnet discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

01ce65e3634910cf04481dc24ea2ce14.exe

Resource

win7-20240903-en

socks5systemz botnet discovery

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

01ce65e3634910cf04481dc24ea2ce14.exe

Resource

win10v2004-20250314-en

socks5systemz botnet discovery

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  01ce65e3634910cf04481dc24ea2ce14.exe
- Size
  
  3.6MB
- MD5
  
  01ce65e3634910cf04481dc24ea2ce14
- SHA1
  
  c86927e6c45e4c6d260713e41e6c8a4c914e321b
- SHA256
  
  3e19a6f499ec5284e0e96e22caf84dec1560ede59e8947dc95a55038982c25af
- SHA512
  
  ccddff21fa0c35aaf8918597a3556d5adccdb06493a1ff26980b37f2cda55e01d7d30e931a20a5fb959fbadbdd320955e99b54aa34929ae7748c95a7bbd96d79
- SSDEEP
  
  98304:3geaVaKEAN7yvxYLfcTGXWq6kI0sH8LKDrvWCv9p9kw7yau:wOAxixYbCGmqzha8LtCv9Cau
Score

10^/10

socks5systemz botnet discovery
- Detect Socks5Systemz Payload
- Socks5Systemz
  Socks5Systemz is a botnet written in C++.
  botnet socks5systemz
- Socks5systemz family
  socks5systemz
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

socks5systemzbotnetdiscovery

behavioral2

socks5systemzbotnetdiscovery

© 2018-2025

Terms | Privacy