socgholish | a59cb5331ead2128296d3674da0c40f1382c55dd3bf015367879e74423781a1b | Triage

Sharing

General

Target

79bcf5380e83d3054c98a180aff67563_JaffaCakes118
Size

549KB
Sample

241028-p553rsxmck
MD5

79bcf5380e83d3054c98a180aff67563
SHA1

5a30c638681265c98af4bbdbd2797da5d75a88ae
SHA256

a59cb5331ead2128296d3674da0c40f1382c55dd3bf015367879e74423781a1b
SHA512

3999441dd7c359c1e0cd0eaa8f3212c6202fe79b6424816852f6d0d1d0a65edf338774a800e2df9df57dc36dd3b90e1f81d96c7786373e5dead9c9e1b6ff5052
SSDEEP

3072:b7loTSWR9G+LNQK3odAhOdl4J4SpuCA0difA1bJDSJy3D7i1D5XaLoVbmN37aFqJ:ZW/G+H

Score

10^/10

socgholish discovery downloader

Malware Config

Targets

- Target
  
  79bcf5380e83d3054c98a180aff67563_JaffaCakes118
- Size
  
  549KB
- MD5
  
  79bcf5380e83d3054c98a180aff67563
- SHA1
  
  5a30c638681265c98af4bbdbd2797da5d75a88ae
- SHA256
  
  a59cb5331ead2128296d3674da0c40f1382c55dd3bf015367879e74423781a1b
- SHA512
  
  3999441dd7c359c1e0cd0eaa8f3212c6202fe79b6424816852f6d0d1d0a65edf338774a800e2df9df57dc36dd3b90e1f81d96c7786373e5dead9c9e1b6ff5052
- SSDEEP
  
  3072:b7loTSWR9G+LNQK3odAhOdl4J4SpuCA0difA1bJDSJy3D7i1D5XaLoVbmN37aFqJ:ZW/G+H
Score

10^/10

socgholish discovery downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
- Socgholish family
  socgholish
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloader

behavioral2