socgholish | e0d263aa512225ccc3911b39e53683ea45d4793451fb87aede0dfa49ee8e1d4b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f3717c9f872c1b01929c9f81682ac19_JaffaCakes118
Size

174KB
Sample

240507-dfy3dafb4s
MD5

1f3717c9f872c1b01929c9f81682ac19
SHA1

fc7dc78351c22a7d0728120983a6a047579f8a64
SHA256

e0d263aa512225ccc3911b39e53683ea45d4793451fb87aede0dfa49ee8e1d4b
SHA512

1e8375a4400bca88c0215b9a272c78d702aeba396c79b7d029d5346a24b0bcc66acce31da53e546d2699d006fefde6fb127bdd563fab5d74c8b8a6c1df42ef2c
SSDEEP

3072:7SCUxRMDP7xW6Hg/8Lc459LqNFLEI6InK0mOI9hWy+6ivou3QTK7INiYvJe82Obf:1Po6msb

Score

10^/10

socgholish downloader

Malware Config

Targets

- Target
  
  1f3717c9f872c1b01929c9f81682ac19_JaffaCakes118
- Size
  
  174KB
- MD5
  
  1f3717c9f872c1b01929c9f81682ac19
- SHA1
  
  fc7dc78351c22a7d0728120983a6a047579f8a64
- SHA256
  
  e0d263aa512225ccc3911b39e53683ea45d4793451fb87aede0dfa49ee8e1d4b
- SHA512
  
  1e8375a4400bca88c0215b9a272c78d702aeba396c79b7d029d5346a24b0bcc66acce31da53e546d2699d006fefde6fb127bdd563fab5d74c8b8a6c1df42ef2c
- SSDEEP
  
  3072:7SCUxRMDP7xW6Hg/8Lc459LqNFLEI6InK0mOI9hWy+6ivou3QTK7INiYvJe82Obf:1Po6msb
Score

10^/10

socgholish downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdownloader

behavioral2