socgholish | adca3eef0b2108d15c10d2be2b7c7db4d9ad269adb8ba2632d9618a58449dc28 | Triage

Sharing

General

Target

1b6a68b1004d040754219d17e08267eb_JaffaCakes118
Size

81KB
Sample

241007-esqgfaveln
MD5

1b6a68b1004d040754219d17e08267eb
SHA1

6a767593ed54682213bc641883c46eebcdd87557
SHA256

adca3eef0b2108d15c10d2be2b7c7db4d9ad269adb8ba2632d9618a58449dc28
SHA512

f49632c69c590523cd4ba920589208442cf9eba9574323aa78e24088053531d3101817c0b8de35a449e6a78bd5e9ad39bc4e5c4da0fc3dc1712fa66f163ab23d
SSDEEP

1536:C1x8m/kj1odoh8XZPodohGeBNCutMMQ2Hd:CLM1odoh8XZPodohGeBNCutMMQ2Hd

Score

10^/10

socgholish discovery downloader

Malware Config

Targets

- Target
  
  1b6a68b1004d040754219d17e08267eb_JaffaCakes118
- Size
  
  81KB
- MD5
  
  1b6a68b1004d040754219d17e08267eb
- SHA1
  
  6a767593ed54682213bc641883c46eebcdd87557
- SHA256
  
  adca3eef0b2108d15c10d2be2b7c7db4d9ad269adb8ba2632d9618a58449dc28
- SHA512
  
  f49632c69c590523cd4ba920589208442cf9eba9574323aa78e24088053531d3101817c0b8de35a449e6a78bd5e9ad39bc4e5c4da0fc3dc1712fa66f163ab23d
- SSDEEP
  
  1536:C1x8m/kj1odoh8XZPodohGeBNCutMMQ2Hd:CLM1odoh8XZPodohGeBNCutMMQ2Hd
Score

10^/10

socgholish discovery downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloader

behavioral2