socelars | 0acd5c68801bf46749a4f5f2533f88be5b641828b6dba6b55b75a5d733f2482f | Triage

Submit
Reports

Overview

overview

Static

static

1ae33d3a5e...a2.exe

windows7_x64

1ae33d3a5e...a2.exe

windows10-2004_x64

Sharing

General

Target

1ae33d3a5ef74d2b9cbaada096bc74a2.exe
Size

1.5MB
Sample

220605-j15csahbg2
MD5

1ae33d3a5ef74d2b9cbaada096bc74a2
SHA1

6adebdebca03afefb4b561a403501f0c39d614da
SHA256

0acd5c68801bf46749a4f5f2533f88be5b641828b6dba6b55b75a5d733f2482f
SHA512

6bb8e3279d0e94fbedf92bd84034eda5a0eb3b7ec5759fe7b9094ee1acc6990a8292f305d2374ea3bbcc7297859aa1e833538296dca3d42a0d0a1811f3d4f21f

Score

10^/10

socelars spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

1ae33d3a5ef74d2b9cbaada096bc74a2.exe

Resource

win7-20220414-en

socelars spyware stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

1ae33d3a5ef74d2b9cbaada096bc74a2.exe

Resource

win10v2004-20220414-en

socelars spyware stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

socelars

C2

https://sa-us-bucket.s3.us-east-2.amazonaws.com/hfber54/

Targets

- Target
  
  1ae33d3a5ef74d2b9cbaada096bc74a2.exe
- Size
  
  1.5MB
- MD5
  
  1ae33d3a5ef74d2b9cbaada096bc74a2
- SHA1
  
  6adebdebca03afefb4b561a403501f0c39d614da
- SHA256
  
  0acd5c68801bf46749a4f5f2533f88be5b641828b6dba6b55b75a5d733f2482f
- SHA512
  
  6bb8e3279d0e94fbedf92bd84034eda5a0eb3b7ec5759fe7b9094ee1acc6990a8292f305d2374ea3bbcc7297859aa1e833538296dca3d42a0d0a1811f3d4f21f
Score

10^/10

socelars spyware stealer
- Socelars
  Socelars is an infostealer targeting browser cookies and credit card credentials.
  stealer socelars
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Credentials in Files

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

socelarsspywarestealer

behavioral2

socelarsspywarestealer

© 2018-2024

Terms | Privacy