socelars | 32fb5b66b29779b9b8fccae0573f79bc99e83a16b513cbef02e5c3645a8c8dc8 | Triage

Submit
Reports

Overview

overview

Static

static

ae4d66b608...28.exe

windows7_x64

ae4d66b608...28.exe

windows10-2004_x64

Sharing

General

Target

ae4d66b608c1fe69b50ae2312bf96e28.exe
Size

1.7MB
Sample

220615-wysbnaafcm
MD5

ae4d66b608c1fe69b50ae2312bf96e28
SHA1

0bd1fbddd0b8603a3f9fd7b721c8b2b98675f45e
SHA256

32fb5b66b29779b9b8fccae0573f79bc99e83a16b513cbef02e5c3645a8c8dc8
SHA512

18b233fc0bec1271c5496f03a5a8c72ac0449971f04c4a7f18d744e167a8e10a73b440a6928ac02b84b6a688460de16a10c0feb0d8b2a2984a77c6748c32d1ff

Score

10^/10

socelars spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

ae4d66b608c1fe69b50ae2312bf96e28.exe

Resource

win7-20220414-en

socelars spyware stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ae4d66b608c1fe69b50ae2312bf96e28.exe

Resource

win10v2004-20220414-en

socelars spyware stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

socelars

C2

https://sa-us-bucket.s3.us-east-2.amazonaws.com/eurfrsa613/

Targets

- Target
  
  ae4d66b608c1fe69b50ae2312bf96e28.exe
- Size
  
  1.7MB
- MD5
  
  ae4d66b608c1fe69b50ae2312bf96e28
- SHA1
  
  0bd1fbddd0b8603a3f9fd7b721c8b2b98675f45e
- SHA256
  
  32fb5b66b29779b9b8fccae0573f79bc99e83a16b513cbef02e5c3645a8c8dc8
- SHA512
  
  18b233fc0bec1271c5496f03a5a8c72ac0449971f04c4a7f18d744e167a8e10a73b440a6928ac02b84b6a688460de16a10c0feb0d8b2a2984a77c6748c32d1ff
Score

10^/10

socelars spyware stealer
- Socelars
  Socelars is an infostealer targeting browser cookies and credit card credentials.
  stealer socelars
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Credentials in Files

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

socelarsspywarestealer

behavioral2

socelarsspywarestealer

© 2018-2024

Terms | Privacy