socelars | 5125698974e08a13396bc77aa7113e3d45360f723596ca3ec88838bb08359c82 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

5125698974e08a13396bc77aa7113e3d45360f723596ca3ec88838bb08359c82
Size

675KB
Sample

221127-g4vxeaeg23
MD5

f18185c1617ef70a6298e02ec286b11b
SHA1

fde9f897241c40ea80540393370e5c730dd5a660
SHA256

5125698974e08a13396bc77aa7113e3d45360f723596ca3ec88838bb08359c82
SHA512

7223d406b66b90ea1b105aeb6a0cec08270df00d5be282387aef65eda2d914bf5ca2d3236dfac40d68e5a328e4df9fb2e2ea0ee7b1483d8a932e861a267de33c
SSDEEP

12288:HqlMhfymUyZzk8ri+hcGgn9cJBJYGahyHY2oSj97E6zUaCFBhCb0p:H5kxyZFe+hcGEXGwiY2jK5aS

Score

10^/10

socelars spyware stealer upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

5125698974e08a13396bc77aa7113e3d45360f723596ca3ec88838bb08359c82.exe

Resource

win10v2004-20221111-en

socelars spyware stealer upx

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sauydga27/

Targets

- Target
  
  5125698974e08a13396bc77aa7113e3d45360f723596ca3ec88838bb08359c82
- Size
  
  675KB
- MD5
  
  f18185c1617ef70a6298e02ec286b11b
- SHA1
  
  fde9f897241c40ea80540393370e5c730dd5a660
- SHA256
  
  5125698974e08a13396bc77aa7113e3d45360f723596ca3ec88838bb08359c82
- SHA512
  
  7223d406b66b90ea1b105aeb6a0cec08270df00d5be282387aef65eda2d914bf5ca2d3236dfac40d68e5a328e4df9fb2e2ea0ee7b1483d8a932e861a267de33c
- SSDEEP
  
  12288:HqlMhfymUyZzk8ri+hcGgn9cJBJYGahyHY2oSj97E6zUaCFBhCb0p:H5kxyZFe+hcGEXGwiY2jK5aS
Score

10^/10

socelars spyware stealer upx
- Socelars
  Socelars is an infostealer targeting browser cookies and credit card credentials.
  stealer socelars
- Socelars payload
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

socelarsspywarestealerupx

© 2018-2024

Terms | Privacy