socelars | 6524867df837a91f7eaa54c45e24016629613db1792f7d552239e669b3ecd627 | Triage

Submit
Reports

Overview

overview

Static

static

29a3c8ca47...94.exe

windows7-x64

7

29a3c8ca47...94.exe

windows10-2004-x64

7

Sharing

General

Target

29a3c8ca47c756e81e03a9840f155c94.exe
Size

1.4MB
Sample

230306-pv8qxacc69
MD5

29a3c8ca47c756e81e03a9840f155c94
SHA1

ae86123e1fadef33efd41468e7b97baa2fa566fa
SHA256

6524867df837a91f7eaa54c45e24016629613db1792f7d552239e669b3ecd627
SHA512

8fcdf9881b7ede5949dffdb6ecc88db7bbbaa6857c90aa53821f463b6fe7245a41ff4dc6975a6a968610e440ae3557f5c062d46adde52e53c3e9a69ccf3f14e2
SSDEEP

24576:6GU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dR755hwSr:ZpEUIvU0N9jkpjweXt77N5Ci

Score

10^/10

socelars spyware stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

29a3c8ca47c756e81e03a9840f155c94.exe

Resource

win7-20230220-en

spyware stealer

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

29a3c8ca47c756e81e03a9840f155c94.exe

Resource

win10v2004-20230220-en

spyware stealer

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sadef33/

Targets

- Target
  
  29a3c8ca47c756e81e03a9840f155c94.exe
- Size
  
  1.4MB
- MD5
  
  29a3c8ca47c756e81e03a9840f155c94
- SHA1
  
  ae86123e1fadef33efd41468e7b97baa2fa566fa
- SHA256
  
  6524867df837a91f7eaa54c45e24016629613db1792f7d552239e669b3ecd627
- SHA512
  
  8fcdf9881b7ede5949dffdb6ecc88db7bbbaa6857c90aa53821f463b6fe7245a41ff4dc6975a6a968610e440ae3557f5c062d46adde52e53c3e9a69ccf3f14e2
- SSDEEP
  
  24576:6GU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dR755hwSr:ZpEUIvU0N9jkpjweXt77N5Ci
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Credentials in Files

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy