socgholish | 3056c537c58c3a88fd83012c4b4b48b91737e7f7de4c578d422e614251e95840 | Triage

Sharing

General

Target

JaffaCakes118_8b33c53eb41448dd27e8e74c156b0f91
Size

175KB
Sample

250108-e3fpzswnhl
MD5

8b33c53eb41448dd27e8e74c156b0f91
SHA1

0d418340241fc77cfc1e50e0479b968a6c2f4a35
SHA256

3056c537c58c3a88fd83012c4b4b48b91737e7f7de4c578d422e614251e95840
SHA512

ed90941cfb645fb33125fab2c42a29e63a4d6dd1477e8ccba501eddc9c8cdce72c6793aaca954ee5856511bd96cda6f91c0bb4a58004601824d45856b722de4d
SSDEEP

3072:P0xjt0G8qxAGXmNJUzi64WvP4yvRJ2TVZG8lDCv5C+zMhY07FR:PCHXmNJxxT

Score

10^/10

socgholish discovery downloader

Malware Config

Targets

- Target
  
  JaffaCakes118_8b33c53eb41448dd27e8e74c156b0f91
- Size
  
  175KB
- MD5
  
  8b33c53eb41448dd27e8e74c156b0f91
- SHA1
  
  0d418340241fc77cfc1e50e0479b968a6c2f4a35
- SHA256
  
  3056c537c58c3a88fd83012c4b4b48b91737e7f7de4c578d422e614251e95840
- SHA512
  
  ed90941cfb645fb33125fab2c42a29e63a4d6dd1477e8ccba501eddc9c8cdce72c6793aaca954ee5856511bd96cda6f91c0bb4a58004601824d45856b722de4d
- SSDEEP
  
  3072:P0xjt0G8qxAGXmNJUzi64WvP4yvRJ2TVZG8lDCv5C+zMhY07FR:PCHXmNJxxT
Score

10^/10

socgholish discovery downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
- Socgholish family
  socgholish
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloader

behavioral2