Overview

overview

10

Static

static

10

cc5533a5c8...82.exe

windows7-x64

10

cc5533a5c8...82.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_19d7c8d680f1cf44324a3abb5ce3e8049ed5b74748c09093092dea485cb43768

  • Size

    748KB

  • Sample

    241224-nl1hhawmft

  • MD5

    37fcaf50fd96228460ab9bfdaf814607

  • SHA1

    1238acba9ade5865dd392436a8d48df820d5be0e

  • SHA256

    19d7c8d680f1cf44324a3abb5ce3e8049ed5b74748c09093092dea485cb43768

  • SHA512

    fb1eaa91c0f87adf274400d8f30adadc1eb6786cf9b6b7997f152f04cd415ef833c2927b35b2308f6546a4dd8791457865d2c51f3c08de3f9de0967659f32e5d

  • SSDEEP

    12288:UuYgPC7+opAPa3+ZhY/7VXLT1zOS2u/1SEKfh6VkXQOfQcTGRgWioeonric:UuzC6oKSuZC/9l8u9SEKgCgxuG9ric

Score
10/10
socelarsdiscoveryspywarestealer

Malware Config

Extracted

Family

socelars

C2

https://sa-us-bucket.s3.us-east-2.amazonaws.com/hfber54/

Targets

    • Target

      cc5533a5c8e6305e52431676f148f292fe276ed951d39ade86c143c9e47a9682

    • Size

      1.4MB

    • MD5

      53f9ebac4ea17afdf3753774a1427795

    • SHA1

      c83b5fe68db8b583569085304c274357e530bfb1

    • SHA256

      cc5533a5c8e6305e52431676f148f292fe276ed951d39ade86c143c9e47a9682

    • SHA512

      58af5d5d6a3e69d2a24701e579c48e75e24dcdc255427106cea8a01cc389f24228932be18d7b731e034f1c7563b4d721a8ff484686c293d04574ec2b7f4d59bd

    • SSDEEP

      24576:uTpE4t7hXTv1Rpgt1E7y2NfXG7E3VQ+gvLJegPeR1nMFAwic:ApdF1w+lBq4gPeRdMmvc

    Score
    10/10
    socelarsdiscoveryspywarestealer

    • Socelars

      Socelars is an infostealer targeting browser cookies and credit card credentials.

      stealersocelars

    • Socelars family

      socelars

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks