formbook

General

Target

1f09f6eb2b8557f4eff4c52252600e69a9efe1df9ba86d4ad1013ccdd57f5bd1
Size

480KB
Sample

220612-xw6lyacdfj
MD5

5e498f86a7883500fe650de6eca7626c
SHA1

6509de8d6616bdd91d6db83dc058d3a040da95e7
SHA256

1f09f6eb2b8557f4eff4c52252600e69a9efe1df9ba86d4ad1013ccdd57f5bd1
SHA512

f1265ccaa2804c6336819cc9a845d34511203a0c029d8658b0cea25a05c44f80f509c9fcda940654c1ae0393feec1d3288df13fd4d66702f6179af38815d78f8

Score

10^/10

formbook sh rat spyware stealer trojan

Malware Config

Extracted

Family

formbook

Version

3.8

Campaign

sh

Decoy

gingerexcept.win

greaterchapter.com

villageprintingkidron.net

luba87871.com

moaaberg.com

stewart-handyman.com

casachapi.net

merdadevida.com

schnorres.info

sunnygardenhoabinh.net

123nuisibles.net

skindentists.care

jardinejewellery.net

nicolekeppler.com

guiyishahou.com

sonnenschutzversand.net

aoizy.com

breathetaking.com

immoweb-rembourser.com

westvirginiamarijuana.net

Targets

- Target
  
  1f09f6eb2b8557f4eff4c52252600e69a9efe1df9ba86d4ad1013ccdd57f5bd1
- Size
  
  480KB
- MD5
  
  5e498f86a7883500fe650de6eca7626c
- SHA1
  
  6509de8d6616bdd91d6db83dc058d3a040da95e7
- SHA256
  
  1f09f6eb2b8557f4eff4c52252600e69a9efe1df9ba86d4ad1013ccdd57f5bd1
- SHA512
  
  f1265ccaa2804c6336819cc9a845d34511203a0c029d8658b0cea25a05c44f80f509c9fcda940654c1ae0393feec1d3288df13fd4d66702f6179af38815d78f8
Score

10^/10

formbook sh rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook Payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook Payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2