Description
Socelars is an infostealer targeting browser cookies and credit card credentials.
f063a5ece410738e966ca8f7d3b3a495.exe
1MB
211125-vcadaafghn
f063a5ece410738e966ca8f7d3b3a495
ec19108520ac2ebeb27b231e7053bd0b710c90d2
17486a31039fa56636c672dba5f9ab12178f888839f41137416b4f85f2affdcb
92c0dedc40eb45e15bb1b88529b71585fc1591183b33b825a5eb3d13d02b2ba9b41602c61c7a23719429ae2c654b1d62e3a336cd6e90edd34a791859bd7aed32
Family | socelars |
C2 |
http://www.ecgbg.com/ |
f063a5ece410738e966ca8f7d3b3a495.exe
f063a5ece410738e966ca8f7d3b3a495
1MB
ec19108520ac2ebeb27b231e7053bd0b710c90d2
17486a31039fa56636c672dba5f9ab12178f888839f41137416b4f85f2affdcb
92c0dedc40eb45e15bb1b88529b71585fc1591183b33b825a5eb3d13d02b2ba9b41602c61c7a23719429ae2c654b1d62e3a336cd6e90edd34a791859bd7aed32
Socelars is an infostealer targeting browser cookies and credit card credentials.
Infostealers often target stored browser data, which can include saved credentials etc.
Looks up Uninstall key entries in the registry to enumerate software on the system.
Uses a legitimate geolocation service to find the infected system's geolocation info.