General

  • Target

    a7c8d9deda4efb11581b1018dcba919e1411a3ceed56719429c7d8e4d9d1f1be

  • Size

    1.4MB

  • Sample

    230228-kaqx5sad55

  • MD5

    a8f783a0d426047e0371b2e74f541321

  • SHA1

    588941256e10629dc0f770234666fa8ada2eed14

  • SHA256

    a7c8d9deda4efb11581b1018dcba919e1411a3ceed56719429c7d8e4d9d1f1be

  • SHA512

    932f271b79515e050b8284d8410f484619fd8fcbe4bcbf2f623e4266fb6b29340db77f13c10f6226609133c3c300572cd56d71c4f4ed699fece85a01da2ff079

  • SSDEEP

    24576:vGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRLA5h3Sm:upEUIvU0N9jkpjweXt77c5p7

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sfasue20/

Targets

    • Target

      a7c8d9deda4efb11581b1018dcba919e1411a3ceed56719429c7d8e4d9d1f1be

    • Size

      1.4MB

    • MD5

      a8f783a0d426047e0371b2e74f541321

    • SHA1

      588941256e10629dc0f770234666fa8ada2eed14

    • SHA256

      a7c8d9deda4efb11581b1018dcba919e1411a3ceed56719429c7d8e4d9d1f1be

    • SHA512

      932f271b79515e050b8284d8410f484619fd8fcbe4bcbf2f623e4266fb6b29340db77f13c10f6226609133c3c300572cd56d71c4f4ed699fece85a01da2ff079

    • SSDEEP

      24576:vGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRLA5h3Sm:upEUIvU0N9jkpjweXt77c5p7

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks