General

  • Target

    10-feb-socgholish-malware-sample.zip

  • Size

    89KB

  • MD5

    f064e3c03e4d31b964340db59a2d56fd

  • SHA1

    c28471389e238b24bc665da6bbbd92a73857f00d

  • SHA256

    3f03475368e80cacae50fca9e90bbf9defcc76989d78c3b1342f21ccca0658ce

  • SHA512

    f6e31d5e91a37abee18bc65e2b788d5187c0093112423d5d5fd2e49704db71464bb976e034ca826c3fa56a34316693bc9c50875ece047b402059d0cbcb3b77d6

  • SSDEEP

    1536:mXMAcVLTxyZgxDPJi2ZZQPEK5a54y1Un8bwM1GCGP47KB8P2rXsKshOzgcS:mXM/pTCgxDPpQPtU5dyA8xqKB8P2rXsb

Score
N/A

Malware Config

Signatures

Files

  • 10-feb-socgholish-malware-sample.zip
    .zip

    Password: infected

  • 10-feb-socgholish-malware-sample/2020-02-04-sodality.mandmsolicitors.com-1-of-3.txt
    .js
  • 10-feb-socgholish-malware-sample/2020-02-04-sodality.mandmsolicitors.com-2-of-3.txt
    .js
  • 10-feb-socgholish-malware-sample/2020-02-04-sodality.mandmsolicitors.com-3-of-3.txt
    .js
  • 10-feb-socgholish-malware-sample/2020-02-04-trace.mukandratourandtravels.com-initial.txt
    .js
  • 10-feb-socgholish-malware-sample/Firefox.js
    .js
  • 10-feb-socgholish-malware-sample/client32.ini
  • 10-feb-socgholish-malware-sample/presentationhost.exe
    .exe windows x86

    Password: infected

    78ed70ebeb178ed1bae5921d2ed514bc


    Code Sign

    Headers

    Imports

    Sections