socelars | eca326c6e4010b10a4e9b7f2148ada1c94d7927463596c30ce9489ceab51ccc9 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

7

Sharing

General

Target

eca326c6e4010b10a4e9b7f2148ada1c94d7927463596c30ce9489ceab51ccc9
Size

1.4MB
Sample

230310-czzycadb2z
MD5

bb7f8b21b1e87dcb9be0af213b727b43
SHA1

462931f6d0c67394790861b0eb510d22d2b72ce3
SHA256

eca326c6e4010b10a4e9b7f2148ada1c94d7927463596c30ce9489ceab51ccc9
SHA512

f024dfca3b66b0d9296b14c51222b866b21bcd42cdaa874f6f1f137e74757049cd138eeb3034a34050f403ed4188be660c16a32a20b00fd5a2020c03f6b54673
SSDEEP

24576:vGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dR7p5hYSQ:upEUIvU0N9jkpjweXt7795uF

Score

10^/10

socelars spyware stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

eca326c6e4010b10a4e9b7f2148ada1c94d7927463596c30ce9489ceab51ccc9.exe

Resource

win10v2004-20230220-en

spyware stealer

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sadef33/

Targets

- Target
  
  eca326c6e4010b10a4e9b7f2148ada1c94d7927463596c30ce9489ceab51ccc9
- Size
  
  1.4MB
- MD5
  
  bb7f8b21b1e87dcb9be0af213b727b43
- SHA1
  
  462931f6d0c67394790861b0eb510d22d2b72ce3
- SHA256
  
  eca326c6e4010b10a4e9b7f2148ada1c94d7927463596c30ce9489ceab51ccc9
- SHA512
  
  f024dfca3b66b0d9296b14c51222b866b21bcd42cdaa874f6f1f137e74757049cd138eeb3034a34050f403ed4188be660c16a32a20b00fd5a2020c03f6b54673
- SSDEEP
  
  24576:vGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dR7p5hYSQ:upEUIvU0N9jkpjweXt7795uF
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy