socgholish | 8c0d782e8055542a81fabdd675b5a03cca387d746fb5193cfd2dc631f8596d8f | Triage

Sharing

General

Target

JaffaCakes118_684313bfe36be7c5b250bb530a8d1e07
Size

113KB
Sample

250102-zz4mvsyngq
MD5

684313bfe36be7c5b250bb530a8d1e07
SHA1

d659fc25f2d34eaff3e062a68274910716c87803
SHA256

8c0d782e8055542a81fabdd675b5a03cca387d746fb5193cfd2dc631f8596d8f
SHA512

cf0a873767780cceb048a928c889d29ef19dcbaca3c1640710d6dc1439933bb4521b2d7d41ddfacbb712a5b5e97a7cc6f104ed0fa88c10815114a0d7e43fb852
SSDEEP

1536:1EFwEz5TFEnBQ7/7NNYBWMYREDdj79pq1RT8wI9jxFn5B2S:C/pF37/7NSWMYREbs1949jfn5BV

Score

10^/10

socgholish discovery downloader

Malware Config

Targets

- Target
  
  JaffaCakes118_684313bfe36be7c5b250bb530a8d1e07
- Size
  
  113KB
- MD5
  
  684313bfe36be7c5b250bb530a8d1e07
- SHA1
  
  d659fc25f2d34eaff3e062a68274910716c87803
- SHA256
  
  8c0d782e8055542a81fabdd675b5a03cca387d746fb5193cfd2dc631f8596d8f
- SHA512
  
  cf0a873767780cceb048a928c889d29ef19dcbaca3c1640710d6dc1439933bb4521b2d7d41ddfacbb712a5b5e97a7cc6f104ed0fa88c10815114a0d7e43fb852
- SSDEEP
  
  1536:1EFwEz5TFEnBQ7/7NNYBWMYREDdj79pq1RT8wI9jxFn5B2S:C/pF37/7NSWMYREbs1949jfn5BV
Score

10^/10

socgholish discovery downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
- Socgholish family
  socgholish
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloader

behavioral2