Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
JaffaCakes118_ea8bcf956803217d80654d8b6108fb87b11f92b3e240fd597bce8a7b7f83f4ae
-
Size
740KB
-
Sample
241223-22pmtsvkcq
-
MD5
cedeee52ee4aeacae67a0c312c945688
-
SHA1
219b6a7b565df6e189d0d4bad99e2dbb9109df37
-
SHA256
ea8bcf956803217d80654d8b6108fb87b11f92b3e240fd597bce8a7b7f83f4ae
-
SHA512
ca744a7eb462b0870d57324136d24a12f324f4e110111d50e3b2730e37e75e01de78f5ae8e484b80ca99cc4b84df06a8bb4c08761df345667b1ee3c97ccaf64e
-
SSDEEP
12288:c4GL/RLRyJ1Xw1D5Zx/EaEekD/C76qEDYLk1KTmNTi953EAIJWtAzyR:ML/doJ1g1FZ9EJnW76qsK6ArgKAzw
Malware Config
Extracted
socelars
https://hueduy.s3.eu-west-1.amazonaws.com/nbsdg818/
Targets
-
-
Target
7620f3939ef9e4a4ff561b57fa9f97f591c816d69773d96ff1ddd85e725fbd27
-
Size
1.4MB
-
MD5
f6cf161ceac1cd6a312c47296477119c
-
SHA1
688d886dc04ec246109e39ce228cf72b2b10ec07
-
SHA256
7620f3939ef9e4a4ff561b57fa9f97f591c816d69773d96ff1ddd85e725fbd27
-
SHA512
565c473e4a4bba69203e1b6f2ee071364df01d40b3d214535a3eb6817482abe15141a2c9424f1c64b8dd6259eb3300438d7bcb0b5e6b4bd36f4a18fd00cea62b
-
SSDEEP
24576:xsLp0FasdJu/+/dfMs2KLoyaU/5DeTgtMyPtTotso/hkGd:2pncZO+HCyPtToaopkGd
Score10/10-
Socelars
Socelars is an infostealer targeting browser cookies and credit card credentials.
-
Socelars family
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Legitimate hosting services abused for malware hosting/C2
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1