socelars | ea7df21920adde0d1ec55c4b38e450178e29d2e83b8852c6a668e568f603642d | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

ea7df21920adde0d1ec55c4b38e450178e29d2e83b8852c6a668e568f603642d
Size

675KB
Sample

221209-dmdp1scb75
MD5

b5e881c4d6d4e61fbcf8c1594e4625b6
SHA1

3bb8a39d446ea110a3073a726b5d740917c96231
SHA256

ea7df21920adde0d1ec55c4b38e450178e29d2e83b8852c6a668e568f603642d
SHA512

87813c07b9758f196522fb5a5c222246542d2c14c30cdefc55d9dfa7735be34fdac4158b7b999d5452e197870a4ea7623fa549bd9a472ba150eb7802607c5bb4
SSDEEP

12288:vE1M9Vh3xscEe7b1QfOy6zNM1lPHmVVbvwhlXf5M0kpOfKe+luCmuA:UM9DQQyD1lPH0V7ulXxM0kpO

Score

10^/10

socelars spyware stealer upx

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

ea7df21920adde0d1ec55c4b38e450178e29d2e83b8852c6a668e568f603642d.exe

Resource

win10v2004-20220812-en

socelars spyware stealer upx

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/asdfedfe8/

Targets

- Target
  
  ea7df21920adde0d1ec55c4b38e450178e29d2e83b8852c6a668e568f603642d
- Size
  
  675KB
- MD5
  
  b5e881c4d6d4e61fbcf8c1594e4625b6
- SHA1
  
  3bb8a39d446ea110a3073a726b5d740917c96231
- SHA256
  
  ea7df21920adde0d1ec55c4b38e450178e29d2e83b8852c6a668e568f603642d
- SHA512
  
  87813c07b9758f196522fb5a5c222246542d2c14c30cdefc55d9dfa7735be34fdac4158b7b999d5452e197870a4ea7623fa549bd9a472ba150eb7802607c5bb4
- SSDEEP
  
  12288:vE1M9Vh3xscEe7b1QfOy6zNM1lPHmVVbvwhlXf5M0kpOfKe+luCmuA:UM9DQQyD1lPH0V7ulXxM0kpO
Score

10^/10

socelars spyware stealer upx
- Socelars
  Socelars is an infostealer targeting browser cookies and credit card credentials.
  stealer socelars
- Socelars payload
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

socelarsspywarestealerupx

© 2018-2024

Terms | Privacy