SocGholish Malware: A Real Threat from a Fake Update | Proofpoint US
Tags
cmtmf-attack-pattern: Masquerading
country: Germany France Iran Italy Spain Poland United Kingdom United States Of America
maec-delivery-vectors: Watering Hole
attack-pattern: Data Credentials - T1589.001 Javascript - T1059.007 Malware - T1587.001 Malware - T1588.001 Masquerading - T1655 Phishing - T1660 Phishing - T1566 Software - T1592.002 Masquerading - T1036 Windows Management Instrumentation - T1047 Masquerading
Show in Graph
Common Information
Type Value
UUID c8864255-9f84-4902-9543-23f3fcb9546b
Fingerprint bd3022f99b3436ed
Analysis status DONE
Considered CTI value 1
Text language
Published Nov. 22, 2022, 5:59 p.m.
Added to db Dec. 21, 2022, 4:53 p.m.
Last updated Oct. 7, 2024, 4:51 p.m.
Headline Part 1: SocGholish, a very real threat from a very fake update
Title SocGholish Malware: A Real Threat from a Fake Update | Proofpoint US
Detected Hints/Tags/Attributes 63/4/2
Source URLs
Redirection Url
Details Source https://www.proofpoint.com/us/blog/threat-insight/part-1-socgholish-very-real-threat-very-fake-update
URL Provider
Details Provider Source level domain
Details proofpoint.com www.proofpoint.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 354 Proofpoint Threat Insight https://www.proofpoint.com/us/threat-insight-blog.xml 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details File 3 
autoupdater.js
Details Mandiant Uncategorized Groups 25 
UNC2165