socelars | f1e3ff88b6fc0840ab70de678b366f9ac40cc813a5bb4b2a13d6df7f95feafa9 | Triage

Submit
Reports

Overview

overview

Static

static

63e82ba913...98.exe

windows7-x64

7

63e82ba913...98.exe

windows10-2004-x64

7

Sharing

General

Target

63e82ba913c091981d7225b906a5c498.exe
Size

1.4MB
Sample

230302-pqm9each62
MD5

63e82ba913c091981d7225b906a5c498
SHA1

7de5ba7fd43ce90ba4ad94bf7ac7aa7f86d2d557
SHA256

f1e3ff88b6fc0840ab70de678b366f9ac40cc813a5bb4b2a13d6df7f95feafa9
SHA512

74c50b34ca97af6b30dfb5462cfc2b3b19bc5baa42013ce3f1708755125ce5d18d6dbf4a510b58463e5ed43045ab9b7927170b593b6496d392e86d071c2367f9
SSDEEP

24576:cGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRjb5hDSU:3pEUIvU0N9jkpjweXt77n5ld

Score

10^/10

socelars spyware stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

63e82ba913c091981d7225b906a5c498.exe

Resource

win7-20230220-en

spyware stealer

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

63e82ba913c091981d7225b906a5c498.exe

Resource

win10v2004-20230220-en

spyware stealer

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sfasue20/

Targets

- Target
  
  63e82ba913c091981d7225b906a5c498.exe
- Size
  
  1.4MB
- MD5
  
  63e82ba913c091981d7225b906a5c498
- SHA1
  
  7de5ba7fd43ce90ba4ad94bf7ac7aa7f86d2d557
- SHA256
  
  f1e3ff88b6fc0840ab70de678b366f9ac40cc813a5bb4b2a13d6df7f95feafa9
- SHA512
  
  74c50b34ca97af6b30dfb5462cfc2b3b19bc5baa42013ce3f1708755125ce5d18d6dbf4a510b58463e5ed43045ab9b7927170b593b6496d392e86d071c2367f9
- SSDEEP
  
  24576:cGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRjb5hDSU:3pEUIvU0N9jkpjweXt77n5ld
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Credentials in Files

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy