General

  • Target

    a3647dbbef07ca7b40b24c407a2cd159.exe

  • Size

    1.4MB

  • Sample

    230403-pyjaeseg64

  • MD5

    a3647dbbef07ca7b40b24c407a2cd159

  • SHA1

    c361cc386cb33df008adebad32f1e60d079d8f85

  • SHA256

    6da5779d2324327b3fbb4e0773a1470d99afbd1138cdd5dc34fa92456e243823

  • SHA512

    d5a0eaf87d69ed2ae4bb357524ed46f3a48f19e08b7cc4d2da4d5d120bfd3072a34c449bb584284ec479baef3a8a7c74506ad4387e9ceac8fc1476100bb4c577

  • SSDEEP

    24576:mGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRjE5hwSQ:1pEUIvU0N9jkpjweXt77A5iF

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/dfgg320/

Targets

    • Target

      a3647dbbef07ca7b40b24c407a2cd159.exe

    • Size

      1.4MB

    • MD5

      a3647dbbef07ca7b40b24c407a2cd159

    • SHA1

      c361cc386cb33df008adebad32f1e60d079d8f85

    • SHA256

      6da5779d2324327b3fbb4e0773a1470d99afbd1138cdd5dc34fa92456e243823

    • SHA512

      d5a0eaf87d69ed2ae4bb357524ed46f3a48f19e08b7cc4d2da4d5d120bfd3072a34c449bb584284ec479baef3a8a7c74506ad4387e9ceac8fc1476100bb4c577

    • SSDEEP

      24576:mGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRjE5hwSQ:1pEUIvU0N9jkpjweXt77A5iF

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks