socgholish | dbd41a861f80402286f74aca96b9edb30a70c796144187d740f48c69bb37cb25 | Triage

Sharing

General

Target

ff73f0b015e9a8c55142ecda4ecf3526_JaffaCakes118
Size

118KB
Sample

241219-l81exazrfq
MD5

ff73f0b015e9a8c55142ecda4ecf3526
SHA1

04686076794dd015382692b5928dda7750b54c5c
SHA256

dbd41a861f80402286f74aca96b9edb30a70c796144187d740f48c69bb37cb25
SHA512

e11b6b90557507c0c85505c01753e0e27378150abe94327b3550e2ae2770b1ecc0d218101ebf5e1aad028a888e1e55688118092995a2208db385f02d83c79d4b
SSDEEP

3072:GWDnfSnIoEVyJyJlPIpjXgR/sFbQtW2v6:GWDnfSQMlyv6

Score

10^/10

socgholish discovery downloader

Malware Config

Targets

- Target
  
  ff73f0b015e9a8c55142ecda4ecf3526_JaffaCakes118
- Size
  
  118KB
- MD5
  
  ff73f0b015e9a8c55142ecda4ecf3526
- SHA1
  
  04686076794dd015382692b5928dda7750b54c5c
- SHA256
  
  dbd41a861f80402286f74aca96b9edb30a70c796144187d740f48c69bb37cb25
- SHA512
  
  e11b6b90557507c0c85505c01753e0e27378150abe94327b3550e2ae2770b1ecc0d218101ebf5e1aad028a888e1e55688118092995a2208db385f02d83c79d4b
- SSDEEP
  
  3072:GWDnfSnIoEVyJyJlPIpjXgR/sFbQtW2v6:GWDnfSQMlyv6
Score

10^/10

socgholish discovery downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
- Socgholish family
  socgholish
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloader

behavioral2