socgholish | 40b5f7f49315b564866fc15f1271b0e24009ca30c940ff1bae9cc9c585a0a893 | Triage

Sharing

General

Target

f1ca8a186c0fcae6f7641bb4fd95206a_JaffaCakes118
Size

100KB
Sample

241215-chzw1sspgj
MD5

f1ca8a186c0fcae6f7641bb4fd95206a
SHA1

65a0d6c09e26d2fd08db9df2256a4dbd6cedaacf
SHA256

40b5f7f49315b564866fc15f1271b0e24009ca30c940ff1bae9cc9c585a0a893
SHA512

1f45cc4e3da8fc9869d8d493648d1e6abc26d4502139653a0894546ef3ddebf1860415fc5c7ee02826d8539c9d3597bf4aa2586b3b16a83410762895b041d636
SSDEEP

1536:GETYDnfSYMZEeIoEPQETydGJlPYJHP4GjmUwxFFFFFqJ1jtxjkxjTneexjTi+ee5:GdDnfSnIoEVy4JlPIkCgRp8+SnpmtBYq

Score

10^/10

socgholish discovery downloader

Malware Config

Targets

- Target
  
  f1ca8a186c0fcae6f7641bb4fd95206a_JaffaCakes118
- Size
  
  100KB
- MD5
  
  f1ca8a186c0fcae6f7641bb4fd95206a
- SHA1
  
  65a0d6c09e26d2fd08db9df2256a4dbd6cedaacf
- SHA256
  
  40b5f7f49315b564866fc15f1271b0e24009ca30c940ff1bae9cc9c585a0a893
- SHA512
  
  1f45cc4e3da8fc9869d8d493648d1e6abc26d4502139653a0894546ef3ddebf1860415fc5c7ee02826d8539c9d3597bf4aa2586b3b16a83410762895b041d636
- SSDEEP
  
  1536:GETYDnfSYMZEeIoEPQETydGJlPYJHP4GjmUwxFFFFFqJ1jtxjkxjTneexjTi+ee5:GdDnfSnIoEVy4JlPIkCgRp8+SnpmtBYq
Score

10^/10

socgholish discovery downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
- Socgholish family
  socgholish
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloader

behavioral2