General
-
Target
JaffaCakes118_bc6d9c4157defbc1fe360d04e8651b093cef14e2b0f93eb95558411a0c69f53b
-
Size
770KB
-
Sample
241230-zyvzbs1pgt
-
MD5
c56e18204203df23ffc24f8c7caa1d7e
-
SHA1
9a41b710ca6a4ef7dceb02d75e5c2fb9c4b24937
-
SHA256
bc6d9c4157defbc1fe360d04e8651b093cef14e2b0f93eb95558411a0c69f53b
-
SHA512
9b6d359e44c7d5cde387be6e6298534898d091a834a5a708d4527da58621bd1bb2149a322b5412cd97e237e7e0a7363d2cf57e23cfa01f3dad3443429f4b140c
-
SSDEEP
24576:amBY8s3Q+v5VCPwu9DqFY+JPujXLSiiFOSljh33QXX3b:a8hUdv5VG7D0MnUjjtAXXL
Malware Config
Extracted
socelars
https://hueduy.s3.eu-west-1.amazonaws.com/dkfjrg725/
Targets
-
-
Target
c05ebed9e8445ecec6ce2334d6d6543644379ed6584d56e6839fb4a168abe6dc
-
Size
1.5MB
-
MD5
2c24f1c8aeaf0ac1553338dc406e5f49
-
SHA1
4d24a34c18e19975b831d5cb8e842b32402f5ee2
-
SHA256
c05ebed9e8445ecec6ce2334d6d6543644379ed6584d56e6839fb4a168abe6dc
-
SHA512
98a6f5d5d473e4e9f7ac9ef5d6dd805ad53480ec7a4ef35894e62dddb4f6c1b2c055c4eb79be804e66e33f9acff75fecfaa00e533c05ce8e5e698fee9590df70
-
SSDEEP
24576:fLvpteBrVtMLwQe1Qog2SoWXaJSwXjrLAmPbHMvVco/vChoV9d:jvpm0MXdh8mPbHMvGo3WoXd
Score10/10-
Socelars
Socelars is an infostealer targeting browser cookies and credit card credentials.
-
Socelars family
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Legitimate hosting services abused for malware hosting/C2
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1