General

  • Target

    c46629bef5a865436b43dc2bfc8897c6de36cb411e59affb249ab2d9e684f36c

  • Size

    1.4MB

  • Sample

    230308-j2h6yaed4s

  • MD5

    e6a6d2c63bf39c8349cbd844b5868f2f

  • SHA1

    c52771f3279eed25670f01dd8965b99267cf0388

  • SHA256

    c46629bef5a865436b43dc2bfc8897c6de36cb411e59affb249ab2d9e684f36c

  • SHA512

    808091f371c29793c6b2e9401ad31c284771705c3e90b31664d8a550ca4410170e041b0598068b23940d829c9f55b46b7653408e867dd6c5d5f0e14052d6a585

  • SSDEEP

    24576:RGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRTR5hkSe:kpEUIvU0N9jkpjweXt77t5ST

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sadef33/

Targets

    • Target

      c46629bef5a865436b43dc2bfc8897c6de36cb411e59affb249ab2d9e684f36c

    • Size

      1.4MB

    • MD5

      e6a6d2c63bf39c8349cbd844b5868f2f

    • SHA1

      c52771f3279eed25670f01dd8965b99267cf0388

    • SHA256

      c46629bef5a865436b43dc2bfc8897c6de36cb411e59affb249ab2d9e684f36c

    • SHA512

      808091f371c29793c6b2e9401ad31c284771705c3e90b31664d8a550ca4410170e041b0598068b23940d829c9f55b46b7653408e867dd6c5d5f0e14052d6a585

    • SSDEEP

      24576:RGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRTR5hkSe:kpEUIvU0N9jkpjweXt77t5ST

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks