General

  • Target

    2d06440b6831b86b706c4a304886c4abdb7486d81fa9c7c90a63a5144319305e

  • Size

    1.4MB

  • Sample

    230404-dqkyhacf37

  • MD5

    4a4eaa3c83245dce8f925137062bcd93

  • SHA1

    3b917cd5f53b9e9477facae8dcd2d894ee9c26f6

  • SHA256

    2d06440b6831b86b706c4a304886c4abdb7486d81fa9c7c90a63a5144319305e

  • SHA512

    0d3bbba4d05cd034ac0b4fb1bf10c83765d61e1c6d464acdd0389df124c89f01ed79d2376abae3bbaf62ddee4323afec6a8d8484731ce9b2651849c46679e71a

  • SSDEEP

    24576:8VYkTpy0OVnKhXJ04BJFKA3wRKB7a9WscrmCqeQrEjt5hntqW:gpJOl8xFMRy/SeQgR55wW

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/dfgg320/

Targets

    • Target

      2d06440b6831b86b706c4a304886c4abdb7486d81fa9c7c90a63a5144319305e

    • Size

      1.4MB

    • MD5

      4a4eaa3c83245dce8f925137062bcd93

    • SHA1

      3b917cd5f53b9e9477facae8dcd2d894ee9c26f6

    • SHA256

      2d06440b6831b86b706c4a304886c4abdb7486d81fa9c7c90a63a5144319305e

    • SHA512

      0d3bbba4d05cd034ac0b4fb1bf10c83765d61e1c6d464acdd0389df124c89f01ed79d2376abae3bbaf62ddee4323afec6a8d8484731ce9b2651849c46679e71a

    • SSDEEP

      24576:8VYkTpy0OVnKhXJ04BJFKA3wRKB7a9WscrmCqeQrEjt5hntqW:gpJOl8xFMRy/SeQgR55wW

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks