socgholish | 437698c464d2c19d91c10a6c8c9b768f667920a46679eaadd8479b99c52103bd | Triage

Sharing

General

Target

9335a9f7af2f22a8b7282f7b61618754_JaffaCakes118
Size

148KB
Sample

241124-hytylayrcw
MD5

9335a9f7af2f22a8b7282f7b61618754
SHA1

8fefafa54f60c2a048f33aefce62e6fab9d8fe7c
SHA256

437698c464d2c19d91c10a6c8c9b768f667920a46679eaadd8479b99c52103bd
SHA512

2e6940d1f0f482e7f465e8a0e578718a5b1bdf91fc61f79d301e1b47dde9d3cd4c0e910ff2581faa188d5f3fbff149c24b540d6d5b69fe37cd7f26442edd42d2
SSDEEP

3072:ZVF0SF3z2UP13G4k5QhLpOatVjbJPi/fNbYaaLStRXcxWUu/v66sbsGon4G59t9i:phr3G4k5QhL8atV+fNbYaaLStRsxWUuG

Score

10^/10

socgholish discovery downloader

Malware Config

Targets

- Target
  
  9335a9f7af2f22a8b7282f7b61618754_JaffaCakes118
- Size
  
  148KB
- MD5
  
  9335a9f7af2f22a8b7282f7b61618754
- SHA1
  
  8fefafa54f60c2a048f33aefce62e6fab9d8fe7c
- SHA256
  
  437698c464d2c19d91c10a6c8c9b768f667920a46679eaadd8479b99c52103bd
- SHA512
  
  2e6940d1f0f482e7f465e8a0e578718a5b1bdf91fc61f79d301e1b47dde9d3cd4c0e910ff2581faa188d5f3fbff149c24b540d6d5b69fe37cd7f26442edd42d2
- SSDEEP
  
  3072:ZVF0SF3z2UP13G4k5QhLpOatVjbJPi/fNbYaaLStRXcxWUu/v66sbsGon4G59t9i:phr3G4k5QhL8atV+fNbYaaLStRsxWUuG
Score

10^/10

socgholish discovery downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
- Socgholish family
  socgholish
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloader

behavioral2