Overview

overview

10

Static

static

dridex

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fefe6dfd1e895647098d6bce13f51d2708d1e85604a502fd1998d4b38a3c217d

  • Size

    913KB

  • Sample

    220923-g92xxaddb8

  • MD5

    41568942a27e81c66ef8b9f0dd0721c9

  • SHA1

    d85a1f9be1d2ed1434440c002b276b88e08131bf

  • SHA256

    fefe6dfd1e895647098d6bce13f51d2708d1e85604a502fd1998d4b38a3c217d

  • SHA512

    e317aeec483795698e42ddc90a466db2f2b5748601ad061c942fb5cb6eebd9c92e4f3c8e57d33d6797e2ce7b2b009a8d06aaf1a000c64ae642ffe9408a097f7a

  • SSDEEP

    12288:9mm8NGa4EW1HX15g+2FhvPZkl6Es+LVhIG3ypM+Me4d9LdIrKFUEyLZTe9LugVL1:9GMa1kHXoFpPZkl+2MpMDtQW

Score
10/10
formbooksde7ratspywarestealertrojan

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

sde7

Decoy

lolfilmfestival.com

pousdaobosque.com

tangierfilm.com

valuedassist.com

qcrluxuryrentals.com

poc4cloudx.com

irizh.art

flowsever.com

serios-lifestyle.com

abc-diomain.com

bmwoemwarehouse.com

vivelamoda.com

thesycorax.online

goodjob129.com

hudyeanamaze.com

pabcp.com

millennialworkouts.com

gpcr-compound-library.com

rotyupin.xyz

hnkcsm.com

Targets

    • Target

      fefe6dfd1e895647098d6bce13f51d2708d1e85604a502fd1998d4b38a3c217d

    • Size

      913KB

    • MD5

      41568942a27e81c66ef8b9f0dd0721c9

    • SHA1

      d85a1f9be1d2ed1434440c002b276b88e08131bf

    • SHA256

      fefe6dfd1e895647098d6bce13f51d2708d1e85604a502fd1998d4b38a3c217d

    • SHA512

      e317aeec483795698e42ddc90a466db2f2b5748601ad061c942fb5cb6eebd9c92e4f3c8e57d33d6797e2ce7b2b009a8d06aaf1a000c64ae642ffe9408a097f7a

    • SSDEEP

      12288:9mm8NGa4EW1HX15g+2FhvPZkl6Es+LVhIG3ypM+Me4d9LdIrKFUEyLZTe9LugVL1:9GMa1kHXoFpPZkl+2MpMDtQW

    Score
    10/10
    formbooksde7ratspywarestealertrojan

    • Formbook

      Formbook is a data stealing malware which is capable of stealing data.

      trojanspywarestealerformbook

    • Formbook payload

      rat

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Matrix

Tasks