Overview

overview

10

Static

static

10

0fa1b320ed...44.exe

windows7-x64

7

0fa1b320ed...44.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    0fa1b320edcc32301f30065b9c965c44.exe

  • Size

    1.4MB

  • Sample

    230302-prs62sce8y

  • MD5

    0fa1b320edcc32301f30065b9c965c44

  • SHA1

    43d3dae8418862ff3b00d051daf4a795b2ade0dc

  • SHA256

    fca04030f36824ac18610b292f6adfec36364be3021b88d3ccd47a6520c635c6

  • SHA512

    8b02331382f992e4787e7c56404a42a10dd74886585d4c41a4b712a1a27bea1b6b0db5993547a979bb7f8a9363e87c6bacdb07064ec71992ad012c827cffd367

  • SSDEEP

    24576:tGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRvU5hnSU:wpEUIvU0N9jkpjweXt77c5Jd

Score
10/10
socelarsspywarestealer

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sfasue20/

Targets

    • Target

      0fa1b320edcc32301f30065b9c965c44.exe

    • Size

      1.4MB

    • MD5

      0fa1b320edcc32301f30065b9c965c44

    • SHA1

      43d3dae8418862ff3b00d051daf4a795b2ade0dc

    • SHA256

      fca04030f36824ac18610b292f6adfec36364be3021b88d3ccd47a6520c635c6

    • SHA512

      8b02331382f992e4787e7c56404a42a10dd74886585d4c41a4b712a1a27bea1b6b0db5993547a979bb7f8a9363e87c6bacdb07064ec71992ad012c827cffd367

    • SSDEEP

      24576:tGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRvU5hnSU:wpEUIvU0N9jkpjweXt77c5Jd

    Score
    7/10
    spywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks