socgholish | ef3b40f64ab1138e8544b83e885b9ca2e3ce3e551e5500afa25621996c229aa4 | Triage

Sharing

General

Target

cf2635dd87fda94dd940ba0386c51ba2_JaffaCakes118
Size

188KB
Sample

240906-krhm4axdnc
MD5

cf2635dd87fda94dd940ba0386c51ba2
SHA1

ed8f2e66d44db666effc186b7e07b19abd571f08
SHA256

ef3b40f64ab1138e8544b83e885b9ca2e3ce3e551e5500afa25621996c229aa4
SHA512

e36cd7188a4dcc9ac8500975b04e23afe754e8949b479b8842bac44d5470deeeeac179530cc98f930ac48d5f80eff6b627fb3edbe16026fb2f21e3ae89498ea0
SSDEEP

3072:AxDNvG8rm/GXmNJUNBVTRQUe+Eb41nLIgPWyHb/th2wfngwDvoR6l:+VXmNJzhYl

Score

10^/10

socgholish discovery downloader

Malware Config

Targets

- Target
  
  cf2635dd87fda94dd940ba0386c51ba2_JaffaCakes118
- Size
  
  188KB
- MD5
  
  cf2635dd87fda94dd940ba0386c51ba2
- SHA1
  
  ed8f2e66d44db666effc186b7e07b19abd571f08
- SHA256
  
  ef3b40f64ab1138e8544b83e885b9ca2e3ce3e551e5500afa25621996c229aa4
- SHA512
  
  e36cd7188a4dcc9ac8500975b04e23afe754e8949b479b8842bac44d5470deeeeac179530cc98f930ac48d5f80eff6b627fb3edbe16026fb2f21e3ae89498ea0
- SSDEEP
  
  3072:AxDNvG8rm/GXmNJUNBVTRQUe+Eb41nLIgPWyHb/th2wfngwDvoR6l:+VXmNJzhYl
Score

10^/10

socgholish discovery downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloader

behavioral2