socelars | 871bbf3c3c34cc1c5f0e0623244cc3332358e4998a39028e67090d5a297efec5 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

7

Sharing

General

Target

871bbf3c3c34cc1c5f0e0623244cc3332358e4998a39028e67090d5a297efec5
Size

1.4MB
Sample

230314-gmpztsfh4w
MD5

78ac34b49147fb5876469ba9e18dc26c
SHA1

5db6316c14fa1f3dd955e7e1f22ff2793df14956
SHA256

871bbf3c3c34cc1c5f0e0623244cc3332358e4998a39028e67090d5a297efec5
SHA512

09345d3952400274c90626f7f66fd2211f9f934f3fc9b51924c91cd2836e7e011beaabd3a0f17a6a1a27601a68affbeac238e46891af69fcca31dc333b2cbc5f
SSDEEP

24576:fVYkTpy0OVnKhXJ04BJFKA3wRKB7a9WscrmCqeQrE7b5hKtMW:VpJOl8xFMRy/SeQgf5AOW

Score

10^/10

socelars spyware stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

871bbf3c3c34cc1c5f0e0623244cc3332358e4998a39028e67090d5a297efec5.exe

Resource

win10v2004-20230220-en

spyware stealer

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sadef33/

Targets

- Target
  
  871bbf3c3c34cc1c5f0e0623244cc3332358e4998a39028e67090d5a297efec5
- Size
  
  1.4MB
- MD5
  
  78ac34b49147fb5876469ba9e18dc26c
- SHA1
  
  5db6316c14fa1f3dd955e7e1f22ff2793df14956
- SHA256
  
  871bbf3c3c34cc1c5f0e0623244cc3332358e4998a39028e67090d5a297efec5
- SHA512
  
  09345d3952400274c90626f7f66fd2211f9f934f3fc9b51924c91cd2836e7e011beaabd3a0f17a6a1a27601a68affbeac238e46891af69fcca31dc333b2cbc5f
- SSDEEP
  
  24576:fVYkTpy0OVnKhXJ04BJFKA3wRKB7a9WscrmCqeQrE7b5hKtMW:VpJOl8xFMRy/SeQgf5AOW
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy