Overview

overview

10

Static

static

Lista de orden.exe

windows7_x64

10

Lista de orden.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Lista de orden.exe

  • Size

    678KB

  • Sample

    211018-jm137sdbh7

  • MD5

    56e3b23ff5014365be8785798915153d

  • SHA1

    9122dda119752ad069799253e0fc11d979fab382

  • SHA256

    01c538b5dacde9dff4c4dc98edddce878a91490b182ff918bfd396a99498118f

  • SHA512

    ff629476499cfaac9adffd43019fca06fbbb311e3685896e838f281faeb0da46cab0911a1047ff3c216c92bdf3eb6e6c8158f89f7d8c9a269ec286efebdaa10b

Score
10/10
formbookbc3spersistenceratspywarestealertrojan

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

bc3s

C2

http://www.topei-products.com/bc3s/

Decoy

anna-ng.com

mariangelamata.com

szqnbl.com

nesherguitars.com

mysekrit.com

againbeautyviensui.xyz

appf.life

bilalsolution.com

technoratii.com

11restoran.com

birthingly.com

crystalcarrillo.com

cohenasset.info

bunchofdesign.com

highstreetmag.com

talentkerning.com

outdoor-glassesadvice.com

aliceeety.com

habbuhot.info

pao91.com

Targets

    • Target

      Lista de orden.exe

    • Size

      678KB

    • MD5

      56e3b23ff5014365be8785798915153d

    • SHA1

      9122dda119752ad069799253e0fc11d979fab382

    • SHA256

      01c538b5dacde9dff4c4dc98edddce878a91490b182ff918bfd396a99498118f

    • SHA512

      ff629476499cfaac9adffd43019fca06fbbb311e3685896e838f281faeb0da46cab0911a1047ff3c216c92bdf3eb6e6c8158f89f7d8c9a269ec286efebdaa10b

    Score
    10/10
    formbookbc3spersistenceratspywarestealertrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Command-Line Interface

1
T1059

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks