formbook

General

Target

4fe1ff24a1755279e09706f0b52dd1a1dbbdfed3490c29e5159fd1e8f21d3127
Size

640KB
Sample

220719-x64kbsacb8
MD5

ab747938ae2d719cfc8122a2ef9bf7b5
SHA1

6a73acab4ecca124433a13c25cc9f2c2a9fded00
SHA256

4fe1ff24a1755279e09706f0b52dd1a1dbbdfed3490c29e5159fd1e8f21d3127
SHA512

2bc5d93a802d03c484a207853bfad2f562c73bf2e56445005b96dbb718f9621c88eb17dc961b97e313e32413e619891b3d5a74b994730c27fc53859a8c45057b

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

3.8

Campaign

h29

Decoy

apmurmarketing.online

gayoo.link

xueyesanxia.com

901propertyhub.com

bennandninaswedding.com

liembarbershop.com

hairdroplabs.com

shipperai.com

assaffish.com

gigantesdalimpeza.com

handyandync.com

kalenderonlinegestalten.com

rdlldl.info

kjqzxo.com

electronics-online.co.uk

dghgqi4sns.com

justanothercoach.com

chaoscreates.com

agrobalear.net

322zbr.info

Targets

- Target
  
  4fe1ff24a1755279e09706f0b52dd1a1dbbdfed3490c29e5159fd1e8f21d3127
- Size
  
  640KB
- MD5
  
  ab747938ae2d719cfc8122a2ef9bf7b5
- SHA1
  
  6a73acab4ecca124433a13c25cc9f2c2a9fded00
- SHA256
  
  4fe1ff24a1755279e09706f0b52dd1a1dbbdfed3490c29e5159fd1e8f21d3127
- SHA512
  
  2bc5d93a802d03c484a207853bfad2f562c73bf2e56445005b96dbb718f9621c88eb17dc961b97e313e32413e619891b3d5a74b994730c27fc53859a8c45057b
Score

10^/10

formbook h29 rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2