socelars | f7cc459be92a349fdb94ee4df69f90d55e93017807b7a63017431c214b8958f4 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

f7cc459be92a349fdb94ee4df69f90d55e93017807b7a63017431c214b8958f4
Size

706KB
Sample

221123-lsk1aacb75
MD5

0703066621bba8eee3ed305a3e13892b
SHA1

af383d61ebfbaf006fcd1b7a3ddabfeeb5cc8957
SHA256

f7cc459be92a349fdb94ee4df69f90d55e93017807b7a63017431c214b8958f4
SHA512

c70c0f571c7e4174f247efa28129f7ef26351f2000f586456c63debbcb179c55db34d82cfb17952e41fb0ff12d213d0aaa1cbd1d21c0a9dfc8e60e3a9430e760
SSDEEP

12288:/YoJl8ls7sZbH1BePHRylykX9Ki5l8JiZ4oLAqPiZMDi4Zdx1+OD/Y+iH://Jl8O6+fR8ykL5l80Zd8mM4HxHY+g

Score

10^/10

socelars spyware stealer upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

f7cc459be92a349fdb94ee4df69f90d55e93017807b7a63017431c214b8958f4.exe

Resource

win10v2004-20221111-en

socelars spyware stealer upx

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/asdhfr1115/

Targets

- Target
  
  f7cc459be92a349fdb94ee4df69f90d55e93017807b7a63017431c214b8958f4
- Size
  
  706KB
- MD5
  
  0703066621bba8eee3ed305a3e13892b
- SHA1
  
  af383d61ebfbaf006fcd1b7a3ddabfeeb5cc8957
- SHA256
  
  f7cc459be92a349fdb94ee4df69f90d55e93017807b7a63017431c214b8958f4
- SHA512
  
  c70c0f571c7e4174f247efa28129f7ef26351f2000f586456c63debbcb179c55db34d82cfb17952e41fb0ff12d213d0aaa1cbd1d21c0a9dfc8e60e3a9430e760
- SSDEEP
  
  12288:/YoJl8ls7sZbH1BePHRylykX9Ki5l8JiZ4oLAqPiZMDi4Zdx1+OD/Y+iH://Jl8O6+fR8ykL5l80Zd8mM4HxHY+g
Score

10^/10

socelars spyware stealer upx
- Socelars
  Socelars is an infostealer targeting browser cookies and credit card credentials.
  stealer socelars
- Socelars payload
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

socelarsspywarestealerupx

© 2018-2024

Terms | Privacy