socgholish | a1aa5bc849f86d2d56ca30514fddd062856e4e14544b0d6aa21e941d9f39df80 | Triage

Sharing

General

Target

JaffaCakes118_29ec9148c51dd49ac22055d4ec49c870
Size

215KB
Sample

241231-vg83easmal
MD5

29ec9148c51dd49ac22055d4ec49c870
SHA1

ef1a3c7863d1aafe461496055ee170a4c21c0e89
SHA256

a1aa5bc849f86d2d56ca30514fddd062856e4e14544b0d6aa21e941d9f39df80
SHA512

55d2ebbb3e2deea2409fdcd85a6023fb721bbe06f72ff51b68eb33c666c915935fd4fe1f7281228da13e9b4b422c892490ae7db55dfe1eb542cae2b2e07efc14
SSDEEP

3072:yeO3xOP7ojJyplITmJqNhCbrq1BozRylLGl0nVrPKOodtMzJHw:XycqNhCbO1SzRylLGl0nVXQ

Score

10^/10

socgholish discovery downloader

Malware Config

Targets

- Target
  
  JaffaCakes118_29ec9148c51dd49ac22055d4ec49c870
- Size
  
  215KB
- MD5
  
  29ec9148c51dd49ac22055d4ec49c870
- SHA1
  
  ef1a3c7863d1aafe461496055ee170a4c21c0e89
- SHA256
  
  a1aa5bc849f86d2d56ca30514fddd062856e4e14544b0d6aa21e941d9f39df80
- SHA512
  
  55d2ebbb3e2deea2409fdcd85a6023fb721bbe06f72ff51b68eb33c666c915935fd4fe1f7281228da13e9b4b422c892490ae7db55dfe1eb542cae2b2e07efc14
- SSDEEP
  
  3072:yeO3xOP7ojJyplITmJqNhCbrq1BozRylLGl0nVrPKOodtMzJHw:XycqNhCbO1SzRylLGl0nVXQ
Score

10^/10

socgholish discovery downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
- Socgholish family
  socgholish
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloader

behavioral2