General

  • Target

    b56c9f9ef5a789f17de68142cfe044d1eccdb954f0d9f8f090412417458f2d5c

  • Size

    1.4MB

  • Sample

    230414-hqyxksac21

  • MD5

    f2e668e35d1cfdafee955b5f3efec26c

  • SHA1

    dab111a7ce2c88d1e0909816b0cba43c00239cef

  • SHA256

    b56c9f9ef5a789f17de68142cfe044d1eccdb954f0d9f8f090412417458f2d5c

  • SHA512

    c340fc14de5d039b34fad83076fcf680c5a830b664e30bc3af38002aecbcb3624e9b9ec78e63838114f213d75c17eafd4163b583db1748f4f1d87a88b94875cb

  • SSDEEP

    24576:JGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRTs5hpSf:MpEUIvU0N9jkpjweXt77A5H+

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sadfe410/

Targets

    • Target

      b56c9f9ef5a789f17de68142cfe044d1eccdb954f0d9f8f090412417458f2d5c

    • Size

      1.4MB

    • MD5

      f2e668e35d1cfdafee955b5f3efec26c

    • SHA1

      dab111a7ce2c88d1e0909816b0cba43c00239cef

    • SHA256

      b56c9f9ef5a789f17de68142cfe044d1eccdb954f0d9f8f090412417458f2d5c

    • SHA512

      c340fc14de5d039b34fad83076fcf680c5a830b664e30bc3af38002aecbcb3624e9b9ec78e63838114f213d75c17eafd4163b583db1748f4f1d87a88b94875cb

    • SSDEEP

      24576:JGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRTs5hpSf:MpEUIvU0N9jkpjweXt77A5H+

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks