General
-
Target
aaa.zip
-
Size
135KB
-
MD5
4ff15d63fb406febfe1ed10b247a62ea
-
SHA1
65513538d03a73f349f7a94ac41deafd8f8d5b9f
-
SHA256
659e3fc41713ee4b55dc514de025d6f77808acb5a569c3f8e3b33ba5db6ae9f0
-
SHA512
af5b41e287e2dcc0d940b6a2d99f4d4595871d194588d5d1cb0e72dd3d35e80307e7c163171aa9be31517873c19117e2ec18f1df7bc3d3c96a626b77cd641d3e
Malware Config
Extracted
formbook
4.1
http://www.constructioncleanup.pro/vd9n/
theunwrappedcollective.com
seckj-ic.com
tyresandover.com
thetrophyworld.com
fonggrconstruction.com
hopiproject.com
sktitle.com
charlotteobscurer.com
qjuhe.com
girlzglitter.com
createmylawn.com
hempcbgpill.com
zzdfdzkj.com
shreehariessential.com
226sm.com
getcupscall.com
neuralviolin.com
sanskaar.life
xn--fhqrm54yyukopc.com
togetherx4fantasy5star.today
buyonlinesaree.com
percyshandman.site
hatchethangout.com
rugpat.com
zen-gizmo.com
vipmomali.com
lacerasavall.cat
aqueouso.com
mkolgems.com
sevenhundredseventysix.fund
fotografhannaneret.com
mitravy.com
bmtrans.net
linterpreting.com
izquay.com
sawaturkey.com
marche-maman.com
eemygf.com
animenovel.com
travelssimply.com
montecitobutterfly.com
volebahis.com
daniela.red
ramseyedk12.com
leyterealestate.info
patriotstrong.net
vkgcrew.com
nadhiradeebaazkiya.online
hotelcarre.com
myfabulouscollection.com
stellantis-luxury-rent.com
hn2020.xyz
emilyscopes.com
lotosouq.com
lovecord.date
stconstant.online
volkite-culverin.net
allwaysautism.com
sheisnatashasimone.com
sepantaceram.com
ishopgrady.com
lifestorycard.com
sexybbwavailable.website
domainbaycapital.com
Signatures
Files
-
aaa.zip.zip
Password: infected
-
????? ??? ??????.formbook.exe.exe windows x86