General
-
Target
JaffaCakes118_a5c6a873411f69feb5606fe7829d971981e5d0a29f50d57d02ef68f91290d082
-
Size
748KB
-
Sample
241224-1jvwfsykap
-
MD5
a54efc8ab2d8d221dc6f3936f3ae4d45
-
SHA1
e51d502aaad26232bc3237b4e8228e5eeacf7cab
-
SHA256
a5c6a873411f69feb5606fe7829d971981e5d0a29f50d57d02ef68f91290d082
-
SHA512
c3e748ba59c24988f2a3dad8296d3a85299bf7e6c518bf9c61f24acc235c3d5e0ea54e244bae00422e178a2bb209d8b9465ddf194620243d3f451caf53276f44
-
SSDEEP
12288:1k35rlbU2o2nFTa3T5Zx/NaWL5AS6IdN9RIsKztm0o1b62AiRjJpZ2Olyzw+QX1U:uRlbtgZ9NTdt68XFKzE/AG1/2OgUtXBs
Malware Config
Extracted
socelars
https://hueduy.s3.eu-west-1.amazonaws.com/dkfjrg725/
Targets
-
-
Target
470965e28355171daf1c1b68a98e11cc5d1859de58d4bcd69a2b963ae2c1d54f
-
Size
1.4MB
-
MD5
c1130d6862b644d0753fd6fa9fdb77d3
-
SHA1
2f552ba784da631295d6bdc3b8cf9a6fe88e04d8
-
SHA256
470965e28355171daf1c1b68a98e11cc5d1859de58d4bcd69a2b963ae2c1d54f
-
SHA512
227a21b17f7ba4c95c4ba365c787c432b85b589f00871121182d16b97756f96faf920f40874ddb1c3b521f5b09400693562deeeb78f91e85adbf4874db9403e7
-
SSDEEP
24576:OsLp0FasdJu/+/dfMs2KLoyaU/5DeTgtMyPtTo5Do/Sf4d:jpncZO+HCyPtTohoKwd
Score10/10-
Socelars
Socelars is an infostealer targeting browser cookies and credit card credentials.
-
Socelars family
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Legitimate hosting services abused for malware hosting/C2
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1