hxxps://getsolara[.]dev | Triage

Submit
Reports

Overview

overview

Static

static

1

URLScan

urlscan

https://getsolara.dev

windows10-1703-x64

9

Sharing

General

Target

https://getsolara.dev
Sample

240829-mr4xfaxbpd

Score

10^/10

genericcloudflare credential_access defense_evasion discovery phishing stealer

Static task

static1

URLScan task

urlscan1

Behavioral task

behavioral1

Sample

https://getsolara.dev

Resource

win10-20240404-en

credential_access defense_evasion discovery stealer

windows10-1703-x64

18 signatures

600 seconds

Malware Config

Targets

- Target
  
  https://getsolara.dev
Score

9^/10

credential_access defense_evasion discovery stealer
- Credentials from Password Stores: Credentials from Web Browsers
  Malicious Access or copy of Web Browser Credential store.
  credential_access stealer
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

SIP and Trust Provider Hijacking

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

urlscan1

behavioral1

credential_accessdefense_evasiondiscoverystealer

© 2018-2025

Terms | Privacy