Overview

overview

10

Static

static

10

1880-63-0x...ry.exe

windows7-x64

3

1880-63-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1880-63-0x0000000004C00000-0x0000000004C2F000-memory.dmp

  • Size

    188KB

  • Sample

    220808-kwmgvaaeg9

  • MD5

    33a29fb55fc6c7868596082abe67913c

  • SHA1

    9a62f368f70aec56a548ccba06a72431a4e4947c

  • SHA256

    d4c5c06b3d6be16aabaa5492255264d2da75a3a99155b31a393f98d5ba6f6d06

  • SHA512

    618f333ed34ed47f2f1f457a938b3de2dcae52c99216855b507a56a1177b77ffa40fb7a887a744024965e954ff959ae5af1241d59876a2466e3cc5236c061ed1

Score
10/10
formbookp94arat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

p94a

Decoy

oootmuim.top

ricondizionato.info

eatarriveoh.top

tuo.wtf

plottaacuse.xyz

maripazcovarrubias.com

pasolaity.sbs

schoolstool.store

davincimuch.net

yh-fl.com

merielchapman.co.uk

omsecuritysolution.com

jqhuafei.com

fypa.site

isdgolf.com

aromasoils.com

dcmaxween.xyz

keilewn.online

billiger-atomstrom.com

chickens93.online

Targets

    • Target

      1880-63-0x0000000004C00000-0x0000000004C2F000-memory.dmp

    • Size

      188KB

    • MD5

      33a29fb55fc6c7868596082abe67913c

    • SHA1

      9a62f368f70aec56a548ccba06a72431a4e4947c

    • SHA256

      d4c5c06b3d6be16aabaa5492255264d2da75a3a99155b31a393f98d5ba6f6d06

    • SHA512

      618f333ed34ed47f2f1f457a938b3de2dcae52c99216855b507a56a1177b77ffa40fb7a887a744024965e954ff959ae5af1241d59876a2466e3cc5236c061ed1

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks