socelars | ff1d034785cd6f7b22d92123dc4665b8da1847e37c8bcd67820c1514c9975fd6 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

7

Sharing

General

Target

ff1d034785cd6f7b22d92123dc4665b8da1847e37c8bcd67820c1514c9975fd6
Size

1.4MB
Sample

230503-clcwnafb6w
MD5

97a60f249cc04d89ce3b800278c941dc
SHA1

2beceb48e43e4b8dd501878b95a60fc23e663973
SHA256

ff1d034785cd6f7b22d92123dc4665b8da1847e37c8bcd67820c1514c9975fd6
SHA512

6ebaa27f1a24f4fa6d327640dae2b56c668026cbfd53d70cb3879913c9261483aafcba613a95a460d99aa1d77567539450a03ecd6562bba2adc299a86fb9dcb4
SSDEEP

24576:+GU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRj35hLSg:dpEUIvU0N9jkpjweXt77z59B

Score

10^/10

socelars spyware stealer

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

ff1d034785cd6f7b22d92123dc4665b8da1847e37c8bcd67820c1514c9975fd6.exe

Resource

win10v2004-20230220-en

spyware stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/uysf428/

Targets

- Target
  
  ff1d034785cd6f7b22d92123dc4665b8da1847e37c8bcd67820c1514c9975fd6
- Size
  
  1.4MB
- MD5
  
  97a60f249cc04d89ce3b800278c941dc
- SHA1
  
  2beceb48e43e4b8dd501878b95a60fc23e663973
- SHA256
  
  ff1d034785cd6f7b22d92123dc4665b8da1847e37c8bcd67820c1514c9975fd6
- SHA512
  
  6ebaa27f1a24f4fa6d327640dae2b56c668026cbfd53d70cb3879913c9261483aafcba613a95a460d99aa1d77567539450a03ecd6562bba2adc299a86fb9dcb4
- SSDEEP
  
  24576:+GU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRj35hLSg:dpEUIvU0N9jkpjweXt77z59B
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops Chrome extension
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

Credential Access

Credentials in Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy