General

  • Target

    45435e8c96b2f117d3b6ea9ce60d3023962ab99da78da8464b80b46b6b756344

  • Size

    1.4MB

  • Sample

    220908-gpfh6sdgg4

  • MD5

    58f5a404c3713c4268f11eb92c956124

  • SHA1

    2ad4a5c272ba8d8f335abe6079cf5157ee9d5137

  • SHA256

    45435e8c96b2f117d3b6ea9ce60d3023962ab99da78da8464b80b46b6b756344

  • SHA512

    ed06bce48fa4a95f7577b15acd6c6ac0271679256f9b7fb3814064dc3883e88567f4e3d40b2e5ebe7b94100db575954d787e455435247927a89b454ece943016

  • SSDEEP

    24576:g3MDpobXmmlFSUacscm2ns1CqSzqrNv+9IxPGSxoDKY6nINznc:g2pI3t5XJixPGSSDQnkznc

Malware Config

Extracted

Family

socelars

C2

https://hueduy.s3.eu-west-1.amazonaws.com/dhfry901/

Targets

    • Target

      45435e8c96b2f117d3b6ea9ce60d3023962ab99da78da8464b80b46b6b756344

    • Size

      1.4MB

    • MD5

      58f5a404c3713c4268f11eb92c956124

    • SHA1

      2ad4a5c272ba8d8f335abe6079cf5157ee9d5137

    • SHA256

      45435e8c96b2f117d3b6ea9ce60d3023962ab99da78da8464b80b46b6b756344

    • SHA512

      ed06bce48fa4a95f7577b15acd6c6ac0271679256f9b7fb3814064dc3883e88567f4e3d40b2e5ebe7b94100db575954d787e455435247927a89b454ece943016

    • SSDEEP

      24576:g3MDpobXmmlFSUacscm2ns1CqSzqrNv+9IxPGSxoDKY6nINznc:g2pI3t5XJixPGSSDQnkznc

    • Socelars

      Socelars is an infostealer targeting browser cookies and credit card credentials.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks