General

  • Target

    cd2cd260bdc51afa1a429deb289178aa.exe

  • Size

    1.4MB

  • Sample

    230224-qg8pesdc71

  • MD5

    cd2cd260bdc51afa1a429deb289178aa

  • SHA1

    9aba96c96b13c92bb846e6e3a4f7879b1d4f7a71

  • SHA256

    ad4e0ba259ac824927b62d57198492fa94c8268f3000432a7fdf727bf67de797

  • SHA512

    ae7780fcebb1dfe284bfcc99f6a666fedd8fc6968fa85abc8e8ea0ae22c89d0bce63b635732acee271b1d29bb855c91064591ffac57d39ec6344ce242c44aa0d

  • SSDEEP

    24576:JVYkTpy0OVnKhXJ04BJFKA34BKB7a9BseX2CKe4YEL55h9N8R:HpJOl8xFUByyye4XN5beR

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sfasue20/

Targets

    • Target

      cd2cd260bdc51afa1a429deb289178aa.exe

    • Size

      1.4MB

    • MD5

      cd2cd260bdc51afa1a429deb289178aa

    • SHA1

      9aba96c96b13c92bb846e6e3a4f7879b1d4f7a71

    • SHA256

      ad4e0ba259ac824927b62d57198492fa94c8268f3000432a7fdf727bf67de797

    • SHA512

      ae7780fcebb1dfe284bfcc99f6a666fedd8fc6968fa85abc8e8ea0ae22c89d0bce63b635732acee271b1d29bb855c91064591ffac57d39ec6344ce242c44aa0d

    • SSDEEP

      24576:JVYkTpy0OVnKhXJ04BJFKA34BKB7a9BseX2CKe4YEL55h9N8R:HpJOl8xFUByyye4XN5beR

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks