General

  • Target

    b2441c136d61aa0637cd9ffece8ed53b6358028214cf78820ffef0c66cc410cf

  • Size

    1.4MB

  • Sample

    230414-g7nbqsgf64

  • MD5

    665116ce9bea34867ec8d393bd21c93a

  • SHA1

    91062393d9e1c76c3280ee374b97bab8a630c587

  • SHA256

    b2441c136d61aa0637cd9ffece8ed53b6358028214cf78820ffef0c66cc410cf

  • SHA512

    156007725e7337eb75be434156729397c8205ff6dcd6f0ae5fff36d2092f35446486837aea543c6c51602b3c6555fc851339c8f23091f79cffd8b4803c2ebdd0

  • SSDEEP

    24576:eGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dR/t5hlSf:9pEUIvU0N9jkpjweXt77F5T+

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sadfe410/

Targets

    • Target

      b2441c136d61aa0637cd9ffece8ed53b6358028214cf78820ffef0c66cc410cf

    • Size

      1.4MB

    • MD5

      665116ce9bea34867ec8d393bd21c93a

    • SHA1

      91062393d9e1c76c3280ee374b97bab8a630c587

    • SHA256

      b2441c136d61aa0637cd9ffece8ed53b6358028214cf78820ffef0c66cc410cf

    • SHA512

      156007725e7337eb75be434156729397c8205ff6dcd6f0ae5fff36d2092f35446486837aea543c6c51602b3c6555fc851339c8f23091f79cffd8b4803c2ebdd0

    • SSDEEP

      24576:eGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dR/t5hlSf:9pEUIvU0N9jkpjweXt77F5T+

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks