socgholish | 0978347dde251badbf26fb8a4924a6bd3aa1ac1040933e350bc6144f46b0bd3a | Triage

Sharing

General

Target

JaffaCakes118_d0079e9ccd18c1042c1bba725491fe43
Size

79KB
Sample

250109-xtbnsaxraz
MD5

d0079e9ccd18c1042c1bba725491fe43
SHA1

664a5cf8e7e1f4b4fc8ff9dd829858f319cf5575
SHA256

0978347dde251badbf26fb8a4924a6bd3aa1ac1040933e350bc6144f46b0bd3a
SHA512

c6d90c48ae4b48504e154db250cd92d592ab847f52845b24b32f8788c8ffb95051fe292db8cdd52f3aec3853c140534ab5f811b3a97df4615bfb14c3b9e10c25
SSDEEP

1536:IWVOZOMqf43jprQjMyst6J26KDTgxz/jIeILOrEo+Y+ujNT5+QNv4:EOM+439r7t6J26O0xz/jIeILOrEoZ+uy

Score

10^/10

socgholish discovery downloader

Malware Config

Targets

- Target
  
  JaffaCakes118_d0079e9ccd18c1042c1bba725491fe43
- Size
  
  79KB
- MD5
  
  d0079e9ccd18c1042c1bba725491fe43
- SHA1
  
  664a5cf8e7e1f4b4fc8ff9dd829858f319cf5575
- SHA256
  
  0978347dde251badbf26fb8a4924a6bd3aa1ac1040933e350bc6144f46b0bd3a
- SHA512
  
  c6d90c48ae4b48504e154db250cd92d592ab847f52845b24b32f8788c8ffb95051fe292db8cdd52f3aec3853c140534ab5f811b3a97df4615bfb14c3b9e10c25
- SSDEEP
  
  1536:IWVOZOMqf43jprQjMyst6J26KDTgxz/jIeILOrEo+Y+ujNT5+QNv4:EOM+439r7t6J26O0xz/jIeILOrEoZ+uy
Score

10^/10

socgholish discovery downloader
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
- Socgholish family
  socgholish
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloader

behavioral2