General
-
Target
JaffaCakes118_8121412cb55b3d14a6904314f1daa63dbd93a4f1d98159428153af03293f29b6
-
Size
754KB
-
Sample
241224-qk7xasylgk
-
MD5
e01e2659d687b05c1b406c516b03b4cc
-
SHA1
b7988f2da24784f14a3b01d5e6d36bafbbb80e7b
-
SHA256
8121412cb55b3d14a6904314f1daa63dbd93a4f1d98159428153af03293f29b6
-
SHA512
da34db65d408d684eb783deee20527568c9861bef0f4351b620609b86bee0e7b5a5c1f56c394d2f74d894bee345953ce34bb3ce2898d78b48741cce71393cf75
-
SSDEEP
12288:Sk35rlbU2o2nFTa3T5Zx/NaWL5AS6IdN9RIsKztm0o1b62AixacO59nhTz:JRlbtgZ9NTdt68XFKzE/AEYTz
Malware Config
Extracted
socelars
https://hueduy.s3.eu-west-1.amazonaws.com/dkfjrg725/
Targets
-
-
Target
fcf3c2dcf3e2e8ca5e8f2b17c0db49f90e9c7a07c0aaa914d90be8384dabb177
-
Size
1.4MB
-
MD5
b33b1ecba586915a7ff37a14fb78cd60
-
SHA1
5aa603111a2e0223f1392f58b2ddd990402096eb
-
SHA256
fcf3c2dcf3e2e8ca5e8f2b17c0db49f90e9c7a07c0aaa914d90be8384dabb177
-
SHA512
94de3055b556071ffbc47e322fd5677a3ca6b3baaad073b3abbaac1bdd27d1d3a93a8ebd44cd81fea6916f2177273b59ae7d12c260ce63111baf1a35469cf439
-
SSDEEP
24576:WsLp0FasdJu/+/dfMs2KLoyaU/5DeTgtMyPtTohno/DLd:LpncZO+HCyPtTo9o7Ld
Score10/10-
Socelars
Socelars is an infostealer targeting browser cookies and credit card credentials.
-
Socelars family
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Legitimate hosting services abused for malware hosting/C2
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1