General

  • Target

    e717969caff3cc85f85d4372f66a88ffbd385da4560998df2ffd90e3afc70077

  • Size

    1.4MB

  • Sample

    220908-hsstcabbcp

  • MD5

    01ce774b75738285cea7167cb1828765

  • SHA1

    34b88bf01960d4ab9e3f208ae78e67295d074132

  • SHA256

    e717969caff3cc85f85d4372f66a88ffbd385da4560998df2ffd90e3afc70077

  • SHA512

    7d883d151dd7edaf52e35d89d824d2b00724dfa35996787ef97e0ea5a4c5b1189999f77fdb7ffc9a735cb689513fa6556b91a8d6552ad5d0bbc27efee8277f6f

  • SSDEEP

    24576:k3MDpobXmmlFSUacscm2ns1CqSzqrNv+9IxPGSpcDKYLbyqnc:k2pI3t5XJixPGSmDZbyqnc

Malware Config

Extracted

Family

socelars

C2

https://hueduy.s3.eu-west-1.amazonaws.com/dhfry901/

Targets

    • Target

      e717969caff3cc85f85d4372f66a88ffbd385da4560998df2ffd90e3afc70077

    • Size

      1.4MB

    • MD5

      01ce774b75738285cea7167cb1828765

    • SHA1

      34b88bf01960d4ab9e3f208ae78e67295d074132

    • SHA256

      e717969caff3cc85f85d4372f66a88ffbd385da4560998df2ffd90e3afc70077

    • SHA512

      7d883d151dd7edaf52e35d89d824d2b00724dfa35996787ef97e0ea5a4c5b1189999f77fdb7ffc9a735cb689513fa6556b91a8d6552ad5d0bbc27efee8277f6f

    • SSDEEP

      24576:k3MDpobXmmlFSUacscm2ns1CqSzqrNv+9IxPGSpcDKYLbyqnc:k2pI3t5XJixPGSmDZbyqnc

    • Socelars

      Socelars is an infostealer targeting browser cookies and credit card credentials.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks