General

  • Target

    4ce3dcde9ee14c5ac4c3d9b811d7c9d1.exe

  • Size

    3.1MB

  • Sample

    250402-h186assyhw

  • MD5

    4ce3dcde9ee14c5ac4c3d9b811d7c9d1

  • SHA1

    198d24170609aeadb8c8b858609a7a8a7c8531fb

  • SHA256

    152b3080afe74136542514cb1245b4e475e4c74e7f5e4df34690f773fab04352

  • SHA512

    bba97fdb0c2218078cdff643c29c0b119966312b0ecb96400f3ee9949df265e7893da1983d3608b2b8d3e5a19f362bd21ea988f62b6fad8e47c42cdcbf277677

  • SSDEEP

    49152:p90dyWbc4giAKU88rmmbkfo7K9k2raMRNCXxxt7FgiUU9NR/+pK/md:3Tscs4Zkw12rZq7Fgi/9H5/md

Malware Config

Targets

    • Target

      4ce3dcde9ee14c5ac4c3d9b811d7c9d1.exe

    • Size

      3.1MB

    • MD5

      4ce3dcde9ee14c5ac4c3d9b811d7c9d1

    • SHA1

      198d24170609aeadb8c8b858609a7a8a7c8531fb

    • SHA256

      152b3080afe74136542514cb1245b4e475e4c74e7f5e4df34690f773fab04352

    • SHA512

      bba97fdb0c2218078cdff643c29c0b119966312b0ecb96400f3ee9949df265e7893da1983d3608b2b8d3e5a19f362bd21ea988f62b6fad8e47c42cdcbf277677

    • SSDEEP

      49152:p90dyWbc4giAKU88rmmbkfo7K9k2raMRNCXxxt7FgiUU9NR/+pK/md:3Tscs4Zkw12rZq7Fgi/9H5/md

    • Detect Socks5Systemz Payload

    • Socks5Systemz

      Socks5Systemz is a botnet written in C++.

    • Socks5systemz family

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks