socelars | 475e4a54f637b0630293b03795deb01151f1b1f45bd2a69ec5a5382ab27434ab | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

7

Sharing

General

Target

475e4a54f637b0630293b03795deb01151f1b1f45bd2a69ec5a5382ab27434ab
Size

1.4MB
Sample

230321-krn5wahd72
MD5

3a5e2cf120f95c7ae1d9a764b57bc185
SHA1

ee375e86befa07194ded8ea53818fabdac4cce43
SHA256

475e4a54f637b0630293b03795deb01151f1b1f45bd2a69ec5a5382ab27434ab
SHA512

96876014fe3ac1e3f182080a0eff7c77ddc8bc2a1035a0c70849ec130cddc6a087c9ce7b4d9a73e79a4fef30aaa760fbac7ffcbb69e534a08f094d995e8df282
SSDEEP

24576:kGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRLP5hMS6S:PpEUIvU0N9jkpjweXt7775CjS

Score

10^/10

socelars spyware stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

475e4a54f637b0630293b03795deb01151f1b1f45bd2a69ec5a5382ab27434ab.exe

Resource

win10v2004-20230220-en

spyware stealer

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/dfgg320/

Targets

- Target
  
  475e4a54f637b0630293b03795deb01151f1b1f45bd2a69ec5a5382ab27434ab
- Size
  
  1.4MB
- MD5
  
  3a5e2cf120f95c7ae1d9a764b57bc185
- SHA1
  
  ee375e86befa07194ded8ea53818fabdac4cce43
- SHA256
  
  475e4a54f637b0630293b03795deb01151f1b1f45bd2a69ec5a5382ab27434ab
- SHA512
  
  96876014fe3ac1e3f182080a0eff7c77ddc8bc2a1035a0c70849ec130cddc6a087c9ce7b4d9a73e79a4fef30aaa760fbac7ffcbb69e534a08f094d995e8df282
- SSDEEP
  
  24576:kGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRLP5hMS6S:PpEUIvU0N9jkpjweXt7775CjS
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy