socgholish | 821b04ab40a20d3444bc53e076db326de5e98026831e6d41e86c2851ece17481 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1

c6d4dc7e35...8.html

windows7-x64

c6d4dc7e35...8.html

windows10-2004-x64

6

Sharing

General

Target

c6d4dc7e357f1ce2125d8720eab957ff_JaffaCakes118
Size

63KB
Sample

241205-khl9xssngm
MD5

c6d4dc7e357f1ce2125d8720eab957ff
SHA1

8c6f11a54c8a25af606a183fb6a3907a6f714f97
SHA256

821b04ab40a20d3444bc53e076db326de5e98026831e6d41e86c2851ece17481
SHA512

fd53383f476d637db22df01ee1e7a0f6bff2e02fe9cbfcd17eee67cf0a94bb60f8694d34b525d0b4512a30419fa5b0489d5330398513f38ddcf66dddbd3a8a3f
SSDEEP

1536:ZazGwhEGtlNJQL1s2SaKb96Z4Hsj4j5C94f1dxtPqK:ZazGwhEGtlNz2SJb96Z4Hsj4Q9GdxtPF

Score

10^/10

socgholish discovery downloader motw phishing

Static task

static1

Behavioral task

behavioral1

Sample

c6d4dc7e357f1ce2125d8720eab957ff_JaffaCakes118.html

Resource

win7-20241010-en

socgholish discovery downloader motw phishing

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

c6d4dc7e357f1ce2125d8720eab957ff_JaffaCakes118.html

Resource

win10v2004-20241007-en

discovery motw phishing

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  c6d4dc7e357f1ce2125d8720eab957ff_JaffaCakes118
- Size
  
  63KB
- MD5
  
  c6d4dc7e357f1ce2125d8720eab957ff
- SHA1
  
  8c6f11a54c8a25af606a183fb6a3907a6f714f97
- SHA256
  
  821b04ab40a20d3444bc53e076db326de5e98026831e6d41e86c2851ece17481
- SHA512
  
  fd53383f476d637db22df01ee1e7a0f6bff2e02fe9cbfcd17eee67cf0a94bb60f8694d34b525d0b4512a30419fa5b0489d5330398513f38ddcf66dddbd3a8a3f
- SSDEEP
  
  1536:ZazGwhEGtlNJQL1s2SaKb96Z4Hsj4j5C94f1dxtPqK:ZazGwhEGtlNz2SJb96Z4Hsj4Q9GdxtPF
Score

10^/10

socgholish discovery downloader motw phishing
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
- Socgholish family
  socgholish
- Mark of the Web detected: This indicates that the page was originally saved or cloned.
  phishing motw
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloadermotwphishing

behavioral2

discoverymotwphishing

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.