socelars | 71f145bda1bfffdfca99d52e4268a4f93b4a29cabd37ca097dfe733d6616d1ed | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

7

Sharing

General

Target

71f145bda1bfffdfca99d52e4268a4f93b4a29cabd37ca097dfe733d6616d1ed
Size

1.4MB
Sample

230309-d96z3sad54
MD5

33490b451d3364f88d3845c7b9c5a8dc
SHA1

b0ffd605288276c961e116fd4ff89230e1964108
SHA256

71f145bda1bfffdfca99d52e4268a4f93b4a29cabd37ca097dfe733d6616d1ed
SHA512

04c252a90f3aa55af34027376d56e340528170054c616dbe00112217cbe74a551d3cda2f42f1fda0a194e1a4a1dcffe3cdae8ffe20ec50094bce564c04895d51
SSDEEP

24576:xGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dR785hpS0:EpEUIvU0N9jkpjweXt77A5H5

Score

10^/10

socelars spyware stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

71f145bda1bfffdfca99d52e4268a4f93b4a29cabd37ca097dfe733d6616d1ed.exe

Resource

win10v2004-20230220-en

spyware stealer

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sadef33/

Targets

- Target
  
  71f145bda1bfffdfca99d52e4268a4f93b4a29cabd37ca097dfe733d6616d1ed
- Size
  
  1.4MB
- MD5
  
  33490b451d3364f88d3845c7b9c5a8dc
- SHA1
  
  b0ffd605288276c961e116fd4ff89230e1964108
- SHA256
  
  71f145bda1bfffdfca99d52e4268a4f93b4a29cabd37ca097dfe733d6616d1ed
- SHA512
  
  04c252a90f3aa55af34027376d56e340528170054c616dbe00112217cbe74a551d3cda2f42f1fda0a194e1a4a1dcffe3cdae8ffe20ec50094bce564c04895d51
- SSDEEP
  
  24576:xGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dR785hpS0:EpEUIvU0N9jkpjweXt77A5H5
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy