formbook

General

Target

2d428026e159d3ff84c0bd9b59c2261eecfd3892654aeb425d202e66124e0b27
Size

560KB
Sample

220614-yq2apsaffm
MD5

611434e3432c4d81cac43d3bd055f6ba
SHA1

da4c8cc3a6ba3a8945fa3b03b67d2a45606b08a4
SHA256

2d428026e159d3ff84c0bd9b59c2261eecfd3892654aeb425d202e66124e0b27
SHA512

8d097c9d35f381a66e26ff0d672dcba1264e77735010289f6c59d81922832ec691cc74c720a15a3ba0ef301d6cd01d05f3f27c21c509f38c792f4e6d48353738

Score

10^/10

formbook sh rat spyware stealer trojan

Malware Config

Extracted

Family

formbook

Version

3.9

Campaign

sh

Decoy

albertparedes.com

landofblockchain.com

flowers2wedding.com

onlinespielenundgewinnen.com

f703148488.win

tomtrottine.com

2cha.net

my-c4eye.net

manchestermusicon.com

ezypzymoney.com

gongjiaochewang.com

sarmacontrol.com

sxxjqgcb.com

test-am-mpdm0709036.com

ganeshajayamandiri.com

brilliancegroupltd.com

ballylongfordwindfarm.com

arthuzo.com

vintagecargo360.com

off-duty.ninja

Targets

- Target
  
  2d428026e159d3ff84c0bd9b59c2261eecfd3892654aeb425d202e66124e0b27
- Size
  
  560KB
- MD5
  
  611434e3432c4d81cac43d3bd055f6ba
- SHA1
  
  da4c8cc3a6ba3a8945fa3b03b67d2a45606b08a4
- SHA256
  
  2d428026e159d3ff84c0bd9b59c2261eecfd3892654aeb425d202e66124e0b27
- SHA512
  
  8d097c9d35f381a66e26ff0d672dcba1264e77735010289f6c59d81922832ec691cc74c720a15a3ba0ef301d6cd01d05f3f27c21c509f38c792f4e6d48353738
Score

10^/10

formbook sh rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook Payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook Payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2