Overview

overview

10

Static

static

10

6e8e9c29fa...3d.exe

windows7-x64

7

6e8e9c29fa...3d.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c6bc33379cb5b58bfc0efe3a9d337706.bin

  • Size

    753KB

  • Sample

    230412-exq9jahg39

  • MD5

    221343b030ea68cd2966cc620c4c84e4

  • SHA1

    94a3b216e984ab3722061c7b1bd0b47bc662c05d

  • SHA256

    ba4539edd4d34d9b4a1017a050da2b39de5630f9974a6acae07d817ebcfebf39

  • SHA512

    7fff8d1f8d6578d72b5a34a3e165e4b2eb249ce6445380861f686f17f5d07ba953c0d2a76815adb4cfafebaaccbeadaaed303c1aef70734df049e9ff095a09ce

  • SSDEEP

    12288:agJefpNIEcJuZ3d4K6zbSoEPUlUhTTS4u/A/SpyvDFOj71ngp5j31DC4uSUBNgSC:arXIEckJdavSvThS4uIKYvJ6WjFDDATC

Score
10/10
socelarsspywarestealer

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sadfe410/

Targets

    • Target

      6e8e9c29fae3c43c270dfa0e02948e47b81482265d6d64585603ace98424113d.exe

    • Size

      1.4MB

    • MD5

      c6bc33379cb5b58bfc0efe3a9d337706

    • SHA1

      b41efc3af54cd685586c468958fbbbfc1a01ce26

    • SHA256

      6e8e9c29fae3c43c270dfa0e02948e47b81482265d6d64585603ace98424113d

    • SHA512

      0927d4029c6da2217b2fffdbf36ec0951148fa21dfd8ad2c7aab6454f4d7b3385e765050c25b2b56564d6536c56047a12d2a03775b1c44e3a2cf0dbc2e45c10d

    • SSDEEP

      24576:XGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRfT5hcSq:GpEUIvU0N9jkpjweXt77L52H

    Score
    7/10
    spywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks