socgholish | c4ab31d701065685a561405ec0669a2a60e5d3ce31a18667f4d14969d011e61e | Triage

Sharing

General

Target

5e7d70c12f393b4d8bc1b6a8118d30a1_JaffaCakes118
Size

227KB
Sample

241019-y5qgrawhqa
MD5

5e7d70c12f393b4d8bc1b6a8118d30a1
SHA1

d6fe02094feb09c8b3289eb65642ffbd02e914a4
SHA256

c4ab31d701065685a561405ec0669a2a60e5d3ce31a18667f4d14969d011e61e
SHA512

34b81ca650c78489fb57c6ed62e3a9954ee97bf6281d30c4c17c5a5896f01558e868c986b31ee93f23dc57d0104dda53136159b8309947563991d37dba22dab0
SSDEEP

3072:BQuzrxeDSye3+Jv1t8aNFVeluyqE2fF2bM4uN6MrkPuKbuU:KuzruSye3+3t8aNFV3Ve

Score

10^/10

socgholish discovery downloader

Malware Config

Targets

- Target
  
  5e7d70c12f393b4d8bc1b6a8118d30a1_JaffaCakes118
- Size
  
  227KB
- MD5
  
  5e7d70c12f393b4d8bc1b6a8118d30a1
- SHA1
  
  d6fe02094feb09c8b3289eb65642ffbd02e914a4
- SHA256
  
  c4ab31d701065685a561405ec0669a2a60e5d3ce31a18667f4d14969d011e61e
- SHA512
  
  34b81ca650c78489fb57c6ed62e3a9954ee97bf6281d30c4c17c5a5896f01558e868c986b31ee93f23dc57d0104dda53136159b8309947563991d37dba22dab0
- SSDEEP
  
  3072:BQuzrxeDSye3+Jv1t8aNFVeluyqE2fF2bM4uN6MrkPuKbuU:KuzruSye3+3t8aNFV3Ve
Score

10^/10

socgholish discovery downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloader

behavioral2