socgholish | a7fe574626cfd0317f46d06544965ed2e56eaa13171da547b1202f3a14590e8d | Triage

Sharing

General

Target

285409c78461f2d2db995aa94577b4f7_JaffaCakes118
Size

141KB
Sample

241009-bplgjasbmh
MD5

285409c78461f2d2db995aa94577b4f7
SHA1

331a371e6bdb5e2ca8e7224f9039254da96d21cd
SHA256

a7fe574626cfd0317f46d06544965ed2e56eaa13171da547b1202f3a14590e8d
SHA512

4bb3b9c05926b8eac5893c6f6ceb4f8c3f17254fd0d46cb7152cfd46ba41a05ecb885b920371670d3a428c9b857d32fde8ea24f2fa342cc17e9df25efdac55fe
SSDEEP

3072:+rBEIj/UcUcXmNRS7C1btZM3IUjA3m/41O+fAJVxGodDhitVZ:IHXmNRHlPZ

Score

10^/10

socgholish discovery downloader

Malware Config

Targets

- Target
  
  285409c78461f2d2db995aa94577b4f7_JaffaCakes118
- Size
  
  141KB
- MD5
  
  285409c78461f2d2db995aa94577b4f7
- SHA1
  
  331a371e6bdb5e2ca8e7224f9039254da96d21cd
- SHA256
  
  a7fe574626cfd0317f46d06544965ed2e56eaa13171da547b1202f3a14590e8d
- SHA512
  
  4bb3b9c05926b8eac5893c6f6ceb4f8c3f17254fd0d46cb7152cfd46ba41a05ecb885b920371670d3a428c9b857d32fde8ea24f2fa342cc17e9df25efdac55fe
- SSDEEP
  
  3072:+rBEIj/UcUcXmNRS7C1btZM3IUjA3m/41O+fAJVxGodDhitVZ:IHXmNRHlPZ
Score

10^/10

socgholish discovery downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloader

behavioral2