formbook | c3f577dd8831537cdf9b9ba66eacd41c3f6f845089c4098e722c3bb70053c8e9

General

Target

c3f577dd8831537cdf9b9ba66eacd41c3f6f845089c4098e722c3bb70053c8e9.exe
Size

178KB
Sample

211116-bxy3lacaa4
MD5

463d1ca7129930900aa2a54c87ae0bb5
SHA1

2c1f80634a398a390315d35e89bad7ec60049a75
SHA256

c3f577dd8831537cdf9b9ba66eacd41c3f6f845089c4098e722c3bb70053c8e9
SHA512

8cfec4ab6b2c8925e0afaebd06e870299863f61ddc2f47e3ff1cc718b05e1a1c3b50409846613585aa5fe2e13e3086d8a94c304ab3771919e93120e92b752d88

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

n7ak

C2

http://www.kmresults.com/n7ak/

Decoy

modischoolcbse.com

theneverwinter.com

rszkjx-vps-hosting.website

fnihil.com

1pbet.com

nnowzscorrez.com

uaotgvjl.icu

starmapsqatar.com

ekisilani.com

extradeepsheets.com

jam-nins.com

buranly.com

orixentertainment.com

rawtech.energy

myol.guru

utex.club

jiapie.com

wowig.store

wweidlyyl.com

systaskautomation.com

Targets

- Target
  
  c3f577dd8831537cdf9b9ba66eacd41c3f6f845089c4098e722c3bb70053c8e9.exe
- Size
  
  178KB
- MD5
  
  463d1ca7129930900aa2a54c87ae0bb5
- SHA1
  
  2c1f80634a398a390315d35e89bad7ec60049a75
- SHA256
  
  c3f577dd8831537cdf9b9ba66eacd41c3f6f845089c4098e722c3bb70053c8e9
- SHA512
  
  8cfec4ab6b2c8925e0afaebd06e870299863f61ddc2f47e3ff1cc718b05e1a1c3b50409846613585aa5fe2e13e3086d8a94c304ab3771919e93120e92b752d88
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2