General

  • Target

    9b0f781c2a6606c6491e92a30e6b20575d5d4701163529f3683d37de59be917d

  • Size

    1.4MB

  • Sample

    230115-1769dsdb42

  • MD5

    4fb4b4468d38522049efaff37d2b6731

  • SHA1

    07e05f8532e1d607a20cc2c233712c8b80eb71fd

  • SHA256

    9b0f781c2a6606c6491e92a30e6b20575d5d4701163529f3683d37de59be917d

  • SHA512

    e8df504acfd0042d42d69d9baf33335637676ae58b0e1c0fd502e74a3be73da996307d313aa1f5819ec07c6c9714bff548e83d92b0db9d8dad88b5ae8ec38cc1

  • SSDEEP

    24576:kTw+pwza9XRiKmEtjvF2QwguEq8qrN5chUfP0SHuqhskQ1:knpRnfs4F2fP09csX1

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/adwwe09/

Targets

    • Target

      9b0f781c2a6606c6491e92a30e6b20575d5d4701163529f3683d37de59be917d

    • Size

      1.4MB

    • MD5

      4fb4b4468d38522049efaff37d2b6731

    • SHA1

      07e05f8532e1d607a20cc2c233712c8b80eb71fd

    • SHA256

      9b0f781c2a6606c6491e92a30e6b20575d5d4701163529f3683d37de59be917d

    • SHA512

      e8df504acfd0042d42d69d9baf33335637676ae58b0e1c0fd502e74a3be73da996307d313aa1f5819ec07c6c9714bff548e83d92b0db9d8dad88b5ae8ec38cc1

    • SSDEEP

      24576:kTw+pwza9XRiKmEtjvF2QwguEq8qrN5chUfP0SHuqhskQ1:knpRnfs4F2fP09csX1

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks