socgholish | 94310f177e160dbf6c4f11f8b48adb6381c56cfaf0c6b5aa613bb3bbebd329ac | Triage

Sharing

General

Target

7965282c0526cc99b493882a25a444e5
Size

135KB
Sample

240127-f6gbcsebe6
MD5

7965282c0526cc99b493882a25a444e5
SHA1

50879b81b06783405ff7086db37e07de5c32d20f
SHA256

94310f177e160dbf6c4f11f8b48adb6381c56cfaf0c6b5aa613bb3bbebd329ac
SHA512

9c84201e21bf33bec9d82b268ab692d093780f0710ce5649d8240ded20501cafcc2e438d3639a08175823bca61977e97c6ca271c2dc9e893ec18597ce000f963
SSDEEP

1536:b19bBpqP5gXgBemfeg7gbg1gPWKdKbKJ6MLMOeKp5HyYeRkKfmeOD8e1nKx5zEpO:BJqxANI5QI9mlMs9C

Score

10^/10

socgholish downloader

Malware Config

Targets

- Target
  
  7965282c0526cc99b493882a25a444e5
- Size
  
  135KB
- MD5
  
  7965282c0526cc99b493882a25a444e5
- SHA1
  
  50879b81b06783405ff7086db37e07de5c32d20f
- SHA256
  
  94310f177e160dbf6c4f11f8b48adb6381c56cfaf0c6b5aa613bb3bbebd329ac
- SHA512
  
  9c84201e21bf33bec9d82b268ab692d093780f0710ce5649d8240ded20501cafcc2e438d3639a08175823bca61977e97c6ca271c2dc9e893ec18597ce000f963
- SSDEEP
  
  1536:b19bBpqP5gXgBemfeg7gbg1gPWKdKbKJ6MLMOeKp5HyYeRkKfmeOD8e1nKx5zEpO:BJqxANI5QI9mlMs9C
Score

10^/10

socgholish downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdownloader

behavioral2