General

  • Target

    c5e13bcb74327c185715e29b32e3e9f9b1e1b2cf03c91685a930c909dffbc1a4

  • Size

    1.4MB

  • Sample

    230407-hdde4sac9x

  • MD5

    718b37ff4d5bf6125f5a75dcb42fcb0d

  • SHA1

    80da44caf2d7f654ebc77de223e2f1176f01c5ba

  • SHA256

    c5e13bcb74327c185715e29b32e3e9f9b1e1b2cf03c91685a930c909dffbc1a4

  • SHA512

    ecd1dc960ac84ea6942afd9e7b9c0e8f291f1426e6d17df5235914db869ef1cb1a8a653800f0d54796248b4f29e69245309c07a834cc96fadb8b7f6326fbb295

  • SSDEEP

    24576:0GU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRXU5hTST:/pEUIvU0N9jkpjweXt77k5Rm

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/dfgg320/

Targets

    • Target

      c5e13bcb74327c185715e29b32e3e9f9b1e1b2cf03c91685a930c909dffbc1a4

    • Size

      1.4MB

    • MD5

      718b37ff4d5bf6125f5a75dcb42fcb0d

    • SHA1

      80da44caf2d7f654ebc77de223e2f1176f01c5ba

    • SHA256

      c5e13bcb74327c185715e29b32e3e9f9b1e1b2cf03c91685a930c909dffbc1a4

    • SHA512

      ecd1dc960ac84ea6942afd9e7b9c0e8f291f1426e6d17df5235914db869ef1cb1a8a653800f0d54796248b4f29e69245309c07a834cc96fadb8b7f6326fbb295

    • SSDEEP

      24576:0GU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRXU5hTST:/pEUIvU0N9jkpjweXt77k5Rm

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks