Overview

overview

10

Static

static

10

43fe43a746...13.exe

windows7-x64

10

43fe43a746...13.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_cabe0f393985dbe44e6745bb3507267ca4856dda16d4e2945b62fce36026e66f

  • Size

    748KB

  • Sample

    241222-d45vtsskfn

  • MD5

    f922d46e981518d20a7357ee5c296ddb

  • SHA1

    fee73da1a7b229161d16a71d071fb894e1de7022

  • SHA256

    cabe0f393985dbe44e6745bb3507267ca4856dda16d4e2945b62fce36026e66f

  • SHA512

    770b159b4215b534416c3d02b001becf6486bba964067c094e48d5d3bd6ec53a248a47c12a427c3dc878a603888c38cfe646274380ede735fd6853367b343e55

  • SSDEEP

    12288:n9kHEzVtu/aY3E/aSbtLweZzf/8PMVbrB1XPk1Zk2NEwFO/kjJpoSbpchCnNUr:nuWOa2BSNhf/8PMVb91Xqk2NWk1JdTY

Score
10/10
socelarsdiscoveryspywarestealer

Malware Config

Extracted

Family

socelars

C2

https://hueduy.s3.eu-west-1.amazonaws.com/dkfjrg725/

Targets

    • Target

      43fe43a7462d892ae08bfdb50dc07249796bf90631a4975ea75738291b484f13

    • Size

      1.4MB

    • MD5

      c521a65d11dca76a0ac886f15e0ba15b

    • SHA1

      56154763cc5c5073682c583ee86e99bb2dec14d2

    • SHA256

      43fe43a7462d892ae08bfdb50dc07249796bf90631a4975ea75738291b484f13

    • SHA512

      77f7fcb92f1cec4f0de7fc2d5cc226db66f73aebbfd1b65e869e5bb57a1a0995160ecb5c00a0aae2d2993d0a9b3d445bbc8889fefce36f8942feb7198889b486

    • SSDEEP

      24576:6sLp0FasdJu/+/dfMs2KLoyaU/5DeTgtMyPtTohzo/Kf4d:npncZO+HCyPtToJoCwd

    Score
    10/10
    socelarsdiscoveryspywarestealer

    • Socelars

      Socelars is an infostealer targeting browser cookies and credit card credentials.

      stealersocelars

    • Socelars family

      socelars

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks