General

  • Target

    8470aca5769e5aa7d51501c7121e68bc.exe

  • Size

    1.4MB

  • Sample

    230225-ffnyhscb49

  • MD5

    8470aca5769e5aa7d51501c7121e68bc

  • SHA1

    135acbd9c9eb414ae232e7ef6e8f34619ff375f1

  • SHA256

    3da76653e83462849a5839cafe3b9d4ee1061ce0996eb368f4a44b293de2957f

  • SHA512

    55830c339c90b0d4b81d3bd12a4b307df890d2be15c6c2f3da2f006bb679fde4af00207643bca5e8bda7d555f5fb0259a32f509ff82df1ac89eac54cce8acc77

  • SSDEEP

    24576:fVYkTpy0OVnKhXJ04BJFKA34BKB7a9BseX2CKe4YEDm5h5N8R:VpJOl8xFUByyye4XK5/eR

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sfasue20/

Targets

    • Target

      8470aca5769e5aa7d51501c7121e68bc.exe

    • Size

      1.4MB

    • MD5

      8470aca5769e5aa7d51501c7121e68bc

    • SHA1

      135acbd9c9eb414ae232e7ef6e8f34619ff375f1

    • SHA256

      3da76653e83462849a5839cafe3b9d4ee1061ce0996eb368f4a44b293de2957f

    • SHA512

      55830c339c90b0d4b81d3bd12a4b307df890d2be15c6c2f3da2f006bb679fde4af00207643bca5e8bda7d555f5fb0259a32f509ff82df1ac89eac54cce8acc77

    • SSDEEP

      24576:fVYkTpy0OVnKhXJ04BJFKA34BKB7a9BseX2CKe4YEDm5h5N8R:VpJOl8xFUByyye4XK5/eR

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks