socgholish | 5bab672e9fc87d92f799d7905c7be8d534e9b6c3decc54fbdd363d5088587a8f | Triage

Sharing

General

Target

5d159dabd2fa28f92a2e6bf3d48ee473_JaffaCakes118
Size

96KB
Sample

241019-rte4basfnk
MD5

5d159dabd2fa28f92a2e6bf3d48ee473
SHA1

d6ea70e8af66034a22b1ce8d20bce0897d356277
SHA256

5bab672e9fc87d92f799d7905c7be8d534e9b6c3decc54fbdd363d5088587a8f
SHA512

c5c976e7c14698159bef6b8023ed11c18538c3dc9198784f63d84402cccb08bbdff31a5a73eb942bc596fbde99dba82e8ab2ad326585ffb91002d8a9ccd7f2ae
SSDEEP

3072:l3ykKL+dmdHqlLVzt8aNAGb1ThxrM1LoYXlUP8Qg:1ykDFt8aNAGHP8x

Score

10^/10

socgholish discovery downloader

Malware Config

Targets

- Target
  
  5d159dabd2fa28f92a2e6bf3d48ee473_JaffaCakes118
- Size
  
  96KB
- MD5
  
  5d159dabd2fa28f92a2e6bf3d48ee473
- SHA1
  
  d6ea70e8af66034a22b1ce8d20bce0897d356277
- SHA256
  
  5bab672e9fc87d92f799d7905c7be8d534e9b6c3decc54fbdd363d5088587a8f
- SHA512
  
  c5c976e7c14698159bef6b8023ed11c18538c3dc9198784f63d84402cccb08bbdff31a5a73eb942bc596fbde99dba82e8ab2ad326585ffb91002d8a9ccd7f2ae
- SSDEEP
  
  3072:l3ykKL+dmdHqlLVzt8aNAGb1ThxrM1LoYXlUP8Qg:1ykDFt8aNAGHP8x
Score

10^/10

socgholish discovery downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloader

behavioral2