formbook

General

Target

0a1c1f4b126157a9ab7e3b90718673794182bba279a567fc4204734383b7a8a4
Size

592KB
Sample

220530-tv528sbeh3
MD5

eba12eb17ea697a548abca7bcf4bde71
SHA1

7bb9afa36f50360e562529b6b7cc097ca0f3b962
SHA256

0a1c1f4b126157a9ab7e3b90718673794182bba279a567fc4204734383b7a8a4
SHA512

3659d873525629feb6b26883d3f1e461d86cf49af88024d6389aae2a1d18181a78b1dad77dbc56ec79223254be1567b80242d2d553768ee8b7d80c53ff38448c

Score

10^/10

formbook sh rat spyware stealer trojan

Malware Config

Extracted

Family

formbook

Version

3.9

Campaign

sh

Decoy

albertparedes.com

landofblockchain.com

flowers2wedding.com

onlinespielenundgewinnen.com

f703148488.win

tomtrottine.com

2cha.net

my-c4eye.net

manchestermusicon.com

ezypzymoney.com

gongjiaochewang.com

sarmacontrol.com

sxxjqgcb.com

test-am-mpdm0709036.com

ganeshajayamandiri.com

brilliancegroupltd.com

ballylongfordwindfarm.com

arthuzo.com

vintagecargo360.com

off-duty.ninja

Targets

- Target
  
  0a1c1f4b126157a9ab7e3b90718673794182bba279a567fc4204734383b7a8a4
- Size
  
  592KB
- MD5
  
  eba12eb17ea697a548abca7bcf4bde71
- SHA1
  
  7bb9afa36f50360e562529b6b7cc097ca0f3b962
- SHA256
  
  0a1c1f4b126157a9ab7e3b90718673794182bba279a567fc4204734383b7a8a4
- SHA512
  
  3659d873525629feb6b26883d3f1e461d86cf49af88024d6389aae2a1d18181a78b1dad77dbc56ec79223254be1567b80242d2d553768ee8b7d80c53ff38448c
Score

10^/10

formbook sh rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook Payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook Payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2