socgholish | 83187f1551f253b8427c0d5fa6f41a6fdf5bda9329520cd490dd274d035eee3b | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

1

JaffaCakes...9.html

windows7-x64

JaffaCakes...9.html

windows10-2004-x64

6

Sharing

General

Target

JaffaCakes118_6217ff9ef19810ec58560a5ba5c9ae89
Size

72KB
Sample

250311-adcvkstwgt
MD5

6217ff9ef19810ec58560a5ba5c9ae89
SHA1

bb0a2dd4990e6fdaccd24fbde52817ab6fd1e70c
SHA256

83187f1551f253b8427c0d5fa6f41a6fdf5bda9329520cd490dd274d035eee3b
SHA512

0e49dcbe455838fd3d13c2e72a1d6251c9076c232e11583cc53c44fbb58683fad410b76d322bedb3ad1988a2d92650b83514665e73c072cada5353ccd16c0fd9
SSDEEP

1536:ZXzGwhEGtlNJQL1s2SZKfA1nO1F4Hsj4sRGQf1detYT6:ZXzGwhEGtlNz2SwfQO1F4Hsj4sfdetYu

Score

10^/10

socgholish discovery downloader motw phishing

Static task

static1

Behavioral task

behavioral1

Sample

JaffaCakes118_6217ff9ef19810ec58560a5ba5c9ae89.html

Resource

win7-20240903-en

socgholish discovery downloader motw phishing

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_6217ff9ef19810ec58560a5ba5c9ae89.html

Resource

win10v2004-20250217-en

discovery motw phishing

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_6217ff9ef19810ec58560a5ba5c9ae89
- Size
  
  72KB
- MD5
  
  6217ff9ef19810ec58560a5ba5c9ae89
- SHA1
  
  bb0a2dd4990e6fdaccd24fbde52817ab6fd1e70c
- SHA256
  
  83187f1551f253b8427c0d5fa6f41a6fdf5bda9329520cd490dd274d035eee3b
- SHA512
  
  0e49dcbe455838fd3d13c2e72a1d6251c9076c232e11583cc53c44fbb58683fad410b76d322bedb3ad1988a2d92650b83514665e73c072cada5353ccd16c0fd9
- SSDEEP
  
  1536:ZXzGwhEGtlNJQL1s2SZKfA1nO1F4Hsj4sRGQf1detYT6:ZXzGwhEGtlNz2SwfQO1F4Hsj4sfdetYu
Score

10^/10

socgholish discovery downloader motw phishing
- SocGholish
  SocGholish is a JavaScript payload that downloads other malware.
  downloader socgholish
- Socgholish family
  socgholish
- Mark of the Web detected: This indicates that the page was originally saved or cloned.
  phishing motw
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

socgholishdiscoverydownloadermotwphishing

behavioral2

discoverymotwphishing

© 2018-2025

Terms | Privacy