General

  • Target

    a767bfd35e526e5900892e9d1fcaec5208af347d5d8367cb81ee7fc11fc61448

  • Size

    1.4MB

  • Sample

    230401-sez1lsag28

  • MD5

    8f1c038828281c67f083cb487983adab

  • SHA1

    fe83d368e9866a76ae88752c0382ad5d2625d64f

  • SHA256

    a767bfd35e526e5900892e9d1fcaec5208af347d5d8367cb81ee7fc11fc61448

  • SHA512

    c9400e745a549234b6a4a9b494d718f2e52ba3c64335e4ff8d803c007426284a5b46c9e6b61d5051384fabcd6b0481685fcce5a41bf6f63b3ccea92f1728bfa3

  • SSDEEP

    24576:0GU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRXb5hkSe:/pEUIvU0N9jkpjweXt77r5+/

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/dfgg320/

Targets

    • Target

      a767bfd35e526e5900892e9d1fcaec5208af347d5d8367cb81ee7fc11fc61448

    • Size

      1.4MB

    • MD5

      8f1c038828281c67f083cb487983adab

    • SHA1

      fe83d368e9866a76ae88752c0382ad5d2625d64f

    • SHA256

      a767bfd35e526e5900892e9d1fcaec5208af347d5d8367cb81ee7fc11fc61448

    • SHA512

      c9400e745a549234b6a4a9b494d718f2e52ba3c64335e4ff8d803c007426284a5b46c9e6b61d5051384fabcd6b0481685fcce5a41bf6f63b3ccea92f1728bfa3

    • SSDEEP

      24576:0GU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRXb5hkSe:/pEUIvU0N9jkpjweXt77r5+/

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks