General
-
Target
c6f0964367d81c1d732017434ed4fcc2.exe
-
Size
675KB
-
Sample
221206-rnz7aseg53
-
MD5
c6f0964367d81c1d732017434ed4fcc2
-
SHA1
37e074ed0fae8b989f9e95e0e6381d9d26d7aca9
-
SHA256
f8f3e67ad9dda3c2391125ab59b5bf75c87bd010dc38bbaf82d1f1d8b9971fa8
-
SHA512
d7b1ba377cc56e7b27dc376b97ac282bb263214408aea8d9fe9a93c685d8a351bca07f134d89120b31e02c1e3c71c702155d1a10112bc6ab23762d46aa7c5568
-
SSDEEP
12288:JE1M9Vh3xscEe7b1QfOy6zNM1lPHmVVbvwhlXf5vJd5ax6AF:yM9DQQyD1lPH0V7ulXxxdGH
Malware Config
Extracted
socelars
https://hdbywe.s3.us-west-2.amazonaws.com/sauydga27/
Targets
-
-
Target
c6f0964367d81c1d732017434ed4fcc2.exe
-
Size
675KB
-
MD5
c6f0964367d81c1d732017434ed4fcc2
-
SHA1
37e074ed0fae8b989f9e95e0e6381d9d26d7aca9
-
SHA256
f8f3e67ad9dda3c2391125ab59b5bf75c87bd010dc38bbaf82d1f1d8b9971fa8
-
SHA512
d7b1ba377cc56e7b27dc376b97ac282bb263214408aea8d9fe9a93c685d8a351bca07f134d89120b31e02c1e3c71c702155d1a10112bc6ab23762d46aa7c5568
-
SSDEEP
12288:JE1M9Vh3xscEe7b1QfOy6zNM1lPHmVVbvwhlXf5vJd5ax6AF:yM9DQQyD1lPH0V7ulXxxdGH
Score10/10-
Socelars
Socelars is an infostealer targeting browser cookies and credit card credentials.
-
Socelars payload
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Legitimate hosting services abused for malware hosting/C2
-