General

  • Target

    48efbfb8c3fc58ca0ead8d7bdab72709850586c967788f14f1d1f3164dea8175

  • Size

    1.4MB

  • Sample

    230414-g47k7sgf53

  • MD5

    97a109f6b29a3e0be54f56310b862ce2

  • SHA1

    20dbdef99100169b8c16067b703225ea93a3aa9b

  • SHA256

    48efbfb8c3fc58ca0ead8d7bdab72709850586c967788f14f1d1f3164dea8175

  • SHA512

    239e2e7a324efed78b75f671db5c530efa67a0e9d3c63aa7fd27198e30f9d69337a866e0c28911d197193eff50bdf34e03d46b1a1f88f0c6c1575ab2573d04b2

  • SSDEEP

    24576:6GU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRTv5h9Sf:ZpEUIvU0N9jkpjweXt77r5z+

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sadfe410/

Targets

    • Target

      48efbfb8c3fc58ca0ead8d7bdab72709850586c967788f14f1d1f3164dea8175

    • Size

      1.4MB

    • MD5

      97a109f6b29a3e0be54f56310b862ce2

    • SHA1

      20dbdef99100169b8c16067b703225ea93a3aa9b

    • SHA256

      48efbfb8c3fc58ca0ead8d7bdab72709850586c967788f14f1d1f3164dea8175

    • SHA512

      239e2e7a324efed78b75f671db5c530efa67a0e9d3c63aa7fd27198e30f9d69337a866e0c28911d197193eff50bdf34e03d46b1a1f88f0c6c1575ab2573d04b2

    • SSDEEP

      24576:6GU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRTv5h9Sf:ZpEUIvU0N9jkpjweXt77r5z+

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks