socgholish | 1ae1eecbb1327a4060047848df23e93dd7f2c117f11df5dd3540ab4e8fbb56c3 | Triage

Sharing

General

Target

c481493af1484d0416149f7a599e2650_JaffaCakes118
Size

275KB
Sample

241204-1kgp8aspcx
MD5

c481493af1484d0416149f7a599e2650
SHA1

6e5dc7cf230215657c80b9a83aa6934ded95c59c
SHA256

1ae1eecbb1327a4060047848df23e93dd7f2c117f11df5dd3540ab4e8fbb56c3
SHA512

14cd9d53162a8dd0f9561454e1d1ac99c81b02ea538dfa4f18df1c48a2efe7f44d296c02e5750f1b6770ce36969b876906d732722b64e8540142144ba61b9a64
SSDEEP

1536:ij5wCePE7vbpZzbEeSLcs6vbI/+bhi8H/tquy:ijfnbSh6vM8hLH/tquy

Score

10^/10

socgholish discovery downloader

Malware Config

Targets

- Target
  
  c481493af1484d0416149f7a599e2650_JaffaCakes118
- Size
  
  275KB
- MD5
  
  c481493af1484d0416149f7a599e2650
- SHA1
  
  6e5dc7cf230215657c80b9a83aa6934ded95c59c
- SHA256
  
  1ae1eecbb1327a4060047848df23e93dd7f2c117f11df5dd3540ab4e8fbb56c3
- SHA512
  
  14cd9d53162a8dd0f9561454e1d1ac99c81b02ea538dfa4f18df1c48a2efe7f44d296c02e5750f1b6770ce36969b876906d732722b64e8540142144ba61b9a64
- SSDEEP
  
  1536:ij5wCePE7vbpZzbEeSLcs6vbI/+bhi8H/tquy:ijfnbSh6vM8hLH/tquy
Score

10^/10

socgholish discovery downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
- Socgholish family
  socgholish
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloader

behavioral2