Overview

overview

10

Static

static

3

0cc4c571dd...d7.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0cc4c571dd7beb0baf48c7a76f3ab1d7.exe

  • Size

    3.4MB

  • Sample

    250407-w532qsz1ay

  • MD5

    0cc4c571dd7beb0baf48c7a76f3ab1d7

  • SHA1

    b887d55bdf46831fa924ccc76040d25f56c9b263

  • SHA256

    72334eda0fa1761f55a5c170be94105f557785e1d1071a9fb876700b32686799

  • SHA512

    02c1a3af5a053d68a6a522947e59e8f9cf2685a6bbe9c5667b7cc359e29b773f1e993361c0bb40fdfe56cb003a406a1a93e2f19253690625560a7b36e31996bf

  • SSDEEP

    98304:N3GzTE4txiO3KL5qWZDwIDpAFjbCicSwk4fl3:J2cO3K1hHDpOhEl3

Score
10/10
socks5systemzbotnetdiscovery

Malware Config

Targets

    • Target

      0cc4c571dd7beb0baf48c7a76f3ab1d7.exe

    • Size

      3.4MB

    • MD5

      0cc4c571dd7beb0baf48c7a76f3ab1d7

    • SHA1

      b887d55bdf46831fa924ccc76040d25f56c9b263

    • SHA256

      72334eda0fa1761f55a5c170be94105f557785e1d1071a9fb876700b32686799

    • SHA512

      02c1a3af5a053d68a6a522947e59e8f9cf2685a6bbe9c5667b7cc359e29b773f1e993361c0bb40fdfe56cb003a406a1a93e2f19253690625560a7b36e31996bf

    • SSDEEP

      98304:N3GzTE4txiO3KL5qWZDwIDpAFjbCicSwk4fl3:J2cO3K1hHDpOhEl3

    Score
    10/10
    socks5systemzbotnetdiscovery

    • Detect Socks5Systemz Payload

    • Socks5Systemz

      Socks5Systemz is a botnet written in C++.

      botnetsocks5systemz

    • Socks5systemz family

      socks5systemz

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks