General

  • Target

    0b70ee102482780a5039700c0edfeb2d483b3f142bbf8ee23a5c364d626da672

  • Size

    1.4MB

  • Sample

    230228-dwe97shc63

  • MD5

    fce50d42c32ea7de3d5da455cd2ead3e

  • SHA1

    7fcbe29cf60fb2f9ba1380a33747c3d6665316ad

  • SHA256

    0b70ee102482780a5039700c0edfeb2d483b3f142bbf8ee23a5c364d626da672

  • SHA512

    9df5dc04607eb51ef7944daffe0ba4cc593debcb2763577ef5fab2e6e47b68426060fc80dd3bef56db7425c860f0f1459619f8715c84492d22d83fc43f4a6e99

  • SSDEEP

    24576:tGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRTP5h/Sm:wpEUIvU0N9jkpjweXt77b5B7

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sfasue20/

Targets

    • Target

      0b70ee102482780a5039700c0edfeb2d483b3f142bbf8ee23a5c364d626da672

    • Size

      1.4MB

    • MD5

      fce50d42c32ea7de3d5da455cd2ead3e

    • SHA1

      7fcbe29cf60fb2f9ba1380a33747c3d6665316ad

    • SHA256

      0b70ee102482780a5039700c0edfeb2d483b3f142bbf8ee23a5c364d626da672

    • SHA512

      9df5dc04607eb51ef7944daffe0ba4cc593debcb2763577ef5fab2e6e47b68426060fc80dd3bef56db7425c860f0f1459619f8715c84492d22d83fc43f4a6e99

    • SSDEEP

      24576:tGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRTP5h/Sm:wpEUIvU0N9jkpjweXt77b5B7

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks