socelars | 832cc608859b1ddfdccebcbae53a0cda81ffb8d548a1af48e6cad4d4d8215f5f | Triage

Sharing

General

Target

1f851d146ee6133c5e771d07c26e2044_JaffaCakes118
Size

990KB
Sample

240507-fmn7vsde49
MD5

1f851d146ee6133c5e771d07c26e2044
SHA1

18c451f2a6e58f710350ec8f11e51d1c1b555d96
SHA256

832cc608859b1ddfdccebcbae53a0cda81ffb8d548a1af48e6cad4d4d8215f5f
SHA512

46214a1bf5c97e4df8873dd5bb12d04f6bc3424fe03caf5f115ab667cdfc8f11a7c25c3b1eeedf657ec165d89577be9ac0ddf256322aec52af90f2300258688d
SSDEEP

24576:IeayptZ8ZsUHvKKKpn3wS8Nnm3qQEP3M30sYqHP3qh3bn94F:haypgs+vUnAHNewknYqHPah3b98

Score

10^/10

socelars discovery

Malware Config

Extracted

Family

socelars

C2

http://www.likewisemeticulous.com/index.php/

Targets

- Target
  
  1f851d146ee6133c5e771d07c26e2044_JaffaCakes118
- Size
  
  990KB
- MD5
  
  1f851d146ee6133c5e771d07c26e2044
- SHA1
  
  18c451f2a6e58f710350ec8f11e51d1c1b555d96
- SHA256
  
  832cc608859b1ddfdccebcbae53a0cda81ffb8d548a1af48e6cad4d4d8215f5f
- SHA512
  
  46214a1bf5c97e4df8873dd5bb12d04f6bc3424fe03caf5f115ab667cdfc8f11a7c25c3b1eeedf657ec165d89577be9ac0ddf256322aec52af90f2300258688d
- SSDEEP
  
  24576:IeayptZ8ZsUHvKKKpn3wS8Nnm3qQEP3M30sYqHP3qh3bn94F:haypgs+vUnAHNewknYqHPah3b98
Score

6^/10

discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2