Overview

overview

10

Static

static

dridex

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a9849a0f7bf5b5e1f9b967737c44ddff914aaa05b8c910e414ac759ca2b959a1

  • Size

    580KB

  • Sample

    220623-s15szsdgeq

  • MD5

    800f62bd315122e9e31f672f64ad4700

  • SHA1

    27525a5ad8514102ef184f14ba0f5d2119c78779

  • SHA256

    a9849a0f7bf5b5e1f9b967737c44ddff914aaa05b8c910e414ac759ca2b959a1

  • SHA512

    7549fcd3365886904f8e70d4550ae8fb2ef5fa275448d6f8b0b1e8a3173efb422d0fd081616e653f9af78c5546dcdd5bbebd6aebea0d44880ecad79dd231ddc1

Score
10/10
formbookg2y4ratspywarestealertrojan

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

g2y4

Decoy

newglabspharma.com

xn--sampoernaslt-bib.com

diabetes-treatment-48790.com

yjtiaddcart.site

forcathyou.xyz

qwjsk.com

phygitalbcn.tech

depvem.online

joinworking.com

takebackarkansas.com

pulseminers.com

xds5nf6h.com

fortags.com

amrumi.com

ultimatecores.com

indilluad.com

caulkingandcoating.com

comunidadintegral.com

organixonly.com

gardenofbeautyhtx.com

Targets

    • Target

      a9849a0f7bf5b5e1f9b967737c44ddff914aaa05b8c910e414ac759ca2b959a1

    • Size

      580KB

    • MD5

      800f62bd315122e9e31f672f64ad4700

    • SHA1

      27525a5ad8514102ef184f14ba0f5d2119c78779

    • SHA256

      a9849a0f7bf5b5e1f9b967737c44ddff914aaa05b8c910e414ac759ca2b959a1

    • SHA512

      7549fcd3365886904f8e70d4550ae8fb2ef5fa275448d6f8b0b1e8a3173efb422d0fd081616e653f9af78c5546dcdd5bbebd6aebea0d44880ecad79dd231ddc1

    Score
    10/10
    formbookg2y4ratspywarestealertrojan

    • Formbook

      Formbook is a data stealing malware which is capable of stealing data.

      trojanspywarestealerformbook

    • Formbook Payload

      rat

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Matrix

Tasks