socgholish | 8fd35986f92938b612a1d87fa5cea2086c560e7d796365de01e1df75886d38f5 | Triage

Sharing

General

Target

43a3c24b212312bca81da8fd40a41044_JaffaCakes118
Size

78KB
Sample

241014-xbk5hazflf
MD5

43a3c24b212312bca81da8fd40a41044
SHA1

bb272c7d3651d0895935b810e6b406fbaecd7ad3
SHA256

8fd35986f92938b612a1d87fa5cea2086c560e7d796365de01e1df75886d38f5
SHA512

3067e7e9576ea73a9fd2657e72970354a5decb4dc0a3d711ae42a2314ba28e787927a7ef332092c9659091a4146beaa477ef4a95fb4964d6d49b5e1817efa299
SSDEEP

1536:j1HGlr4OD+xOgpttkKKg8TE/e/tR7+UHtAotodahIndapyCmfEYT4NIYeykQ2tGN:j1HGlUM+xHpttkKKgjvUNPtodahIndah

Score

10^/10

socgholish discovery downloader

Malware Config

Targets

- Target
  
  43a3c24b212312bca81da8fd40a41044_JaffaCakes118
- Size
  
  78KB
- MD5
  
  43a3c24b212312bca81da8fd40a41044
- SHA1
  
  bb272c7d3651d0895935b810e6b406fbaecd7ad3
- SHA256
  
  8fd35986f92938b612a1d87fa5cea2086c560e7d796365de01e1df75886d38f5
- SHA512
  
  3067e7e9576ea73a9fd2657e72970354a5decb4dc0a3d711ae42a2314ba28e787927a7ef332092c9659091a4146beaa477ef4a95fb4964d6d49b5e1817efa299
- SSDEEP
  
  1536:j1HGlr4OD+xOgpttkKKg8TE/e/tR7+UHtAotodahIndapyCmfEYT4NIYeykQ2tGN:j1HGlUM+xHpttkKKgjvUNPtodahIndah
Score

10^/10

socgholish discovery downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloader

behavioral2