socgholish | afae64a831e06eb49ebdad49bd476c606e6ecfd01d2da733171584481e17489e | Triage

Sharing

General

Target

ba209502e408d8458276ad0b2cf53ddf_JaffaCakes118
Size

93KB
Sample

241202-znymgaxrdp
MD5

ba209502e408d8458276ad0b2cf53ddf
SHA1

e43dd2470d2fa44b1895b29608bae75333db1984
SHA256

afae64a831e06eb49ebdad49bd476c606e6ecfd01d2da733171584481e17489e
SHA512

f0a8af2f98227de2441cc73e6ec3adaa3d7788833636f9dce467b00db0f2720962ac0cecd6890bb9ca3a31f47974c5289f471d71f3659d4b30537971e237346a
SSDEEP

1536:Ewgr8VkeO3EeW/sMBukxyryI7SJ06hI8MaOKaS6cgRrmTBB4:keO3EeW/Lu4yryI7SHhI8MaO/gTBB4

Score

10^/10

socgholish discovery downloader

Malware Config

Targets

- Target
  
  ba209502e408d8458276ad0b2cf53ddf_JaffaCakes118
- Size
  
  93KB
- MD5
  
  ba209502e408d8458276ad0b2cf53ddf
- SHA1
  
  e43dd2470d2fa44b1895b29608bae75333db1984
- SHA256
  
  afae64a831e06eb49ebdad49bd476c606e6ecfd01d2da733171584481e17489e
- SHA512
  
  f0a8af2f98227de2441cc73e6ec3adaa3d7788833636f9dce467b00db0f2720962ac0cecd6890bb9ca3a31f47974c5289f471d71f3659d4b30537971e237346a
- SSDEEP
  
  1536:Ewgr8VkeO3EeW/sMBukxyryI7SJ06hI8MaOKaS6cgRrmTBB4:keO3EeW/Lu4yryI7SHhI8MaO/gTBB4
Score

10^/10

socgholish discovery downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
- Socgholish family
  socgholish
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloader

behavioral2