General

  • Target

    file.exe

  • Size

    1.4MB

  • Sample

    230118-p8nmwsdg21

  • MD5

    74cbcf1db2ba03c15cf83d6b1aa2ae08

  • SHA1

    4d76e51e713e4a1fdd4daa10fef2f72c8fef7acf

  • SHA256

    77e16faa3c560e008e4109796f902f428cc026b97d1faedafd5cb8f162c61ad8

  • SHA512

    e313dad62d4b41047808db1160e931ec14e52754e9edf8bf5937e35fe007457fe0cf27c2b585f6e36238d92047484c372c45f5aa4cf0c5a092d49b8cef715233

  • SSDEEP

    24576:l1pS5c5rfPMxAb4Xo23Bo3EigtD8JgRCMPA182iskbpZr18:/p/59YEa1EMPAmDsqn8

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sdfeas18/

Targets

    • Target

      file.exe

    • Size

      1.4MB

    • MD5

      74cbcf1db2ba03c15cf83d6b1aa2ae08

    • SHA1

      4d76e51e713e4a1fdd4daa10fef2f72c8fef7acf

    • SHA256

      77e16faa3c560e008e4109796f902f428cc026b97d1faedafd5cb8f162c61ad8

    • SHA512

      e313dad62d4b41047808db1160e931ec14e52754e9edf8bf5937e35fe007457fe0cf27c2b585f6e36238d92047484c372c45f5aa4cf0c5a092d49b8cef715233

    • SSDEEP

      24576:l1pS5c5rfPMxAb4Xo23Bo3EigtD8JgRCMPA182iskbpZr18:/p/59YEa1EMPAmDsqn8

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks