Extracted

• • Target

    80dfcce79746fa5f6d6586963f2d0ea6_JaffaCakes118

  • Size

    1.4MB

  • MD5

    80dfcce79746fa5f6d6586963f2d0ea6

  • SHA1

    082c49491efda190daed58b44188bed03dcc78bf

  • SHA256

    cdc00a4d60058abdd666ddb7a283bf5eb57a668c08656e757f0faa5bf7d5007b

  • SHA512

    fbd9c0fddca8754e1df6f16a4966046b2a9e16ade6aeec9f5917699d47d755f1915cfd73ce3a0168b812708f081c47a5245d4b013032fa7613be5d7b4be64907

  • SSDEEP

    24576:wxpXPaR2J33o3S7P5zuHHOF2ahfehMHsGKzOYf8EEvX3yZ1rsa:Qpy+VDa8rtPvX3yZ9s

  Score

  10^/10

  socelarsdiscoveryspywarestealer

  • Socelars

    Socelars is an infostealer targeting browser cookies and credit card credentials.

    stealersocelars

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery

  • Legitimate hosting services abused for malware hosting/C2

  • Looks up geolocation information via web service

    Uses a legitimate geolocation service to find the infected system's geolocation info.

  behavioral1behavioral2