Overview

overview

10

Static

static

10

fbc049020e...84.exe

windows7-x64

10

fbc049020e...84.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_2b4c9cfccb8b21b99c150aef14fb7707818c6d9ec63d2169f203e23ae17183ab

  • Size

    752KB

  • Sample

    241223-yd3yrsynht

  • MD5

    c79a810b898db21d53374b33162a984a

  • SHA1

    e6413e9ef208a75d662cd94bdf5146cade3d1702

  • SHA256

    2b4c9cfccb8b21b99c150aef14fb7707818c6d9ec63d2169f203e23ae17183ab

  • SHA512

    706dc1d7ef418be05f0d2432edc4294d6582481c7a14124dae0b2b0092384c02cb9a9ccd7faab62f6556dc8478d60ff8f1cc5d4b8124ce0396355b7f714c82a1

  • SSDEEP

    12288:MhHDMs21iqeaCbxUOJAwscM8njHUiaCS7y8Wr9dR0S8I8m3x0zOK+I0+znHGh1q:qDt2jCbPJAAM8nvxOTWxdN/8Wxcm+zma

Score
10/10
socelarsdiscoveryspywarestealer

Malware Config

Extracted

Family

socelars

C2

https://hueduy.s3.eu-west-1.amazonaws.com/gdyhf805/

Targets

    • Target

      fbc049020e23e86e9f05f1a2f331ef1580908a0e1a9d2446d19914bf804d9384

    • Size

      1.4MB

    • MD5

      207da69fcbe9f7ad47f333e5cf69807d

    • SHA1

      d7e7bf04d10bd3430a18d5fb3439ce4faeba4dcd

    • SHA256

      fbc049020e23e86e9f05f1a2f331ef1580908a0e1a9d2446d19914bf804d9384

    • SHA512

      2d20811f6c667dea6fe08b5e33d98fa06320bba8089fa884490caf11cf6bf793aa6c72267d55f3fe8a6f10066a94ef7bf538e187e22215c894b361ceef06d898

    • SSDEEP

      24576:MLvpteBrVtMLwQe1Qog2SoWXaJSwXjrLAmPbHMvRVo/KDd:avpm0MXdh8mPbHMv/oSDd

    Score
    10/10
    socelarsdiscoveryspywarestealer

    • Socelars

      Socelars is an infostealer targeting browser cookies and credit card credentials.

      stealersocelars

    • Socelars family

      socelars

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks