Extracted

• • Target

    wire_deposito# 00711 23-09-2022_IMG.exe

  • Size

    294KB

  • MD5

    ebf3bd44feb646d0113e34451935faec

  • SHA1

    ff2c6c0ceacd9a97c845a1e4056ab7e1c097cf51

  • SHA256

    3d4bcb3525d58d2270133e0349f8cc3463a2c5b151e8cc7b1580806c6e86fbf8

  • SHA512

    b30b45f6c9b86be224078bd524f45df6db5b4d488ad257743c9ceb869e993e2c1c1296361f29c0279890c32a071950c3678651d5d9a70526cd489f96baaa05e1

  • SSDEEP

    6144:UL8i9w0XHrJ7Cj3Z3I5shJd78mf9EFV2PsN2sFzVELTlg:ImqF7Mp3IKhJ58mf9E/QOFz8Tlg

  Score

  10^/10

  formbookdqrvratspywarestealertrojan

  • Formbook

    Formbook is a data stealing malware which is capable of stealing data.

    trojanspywarestealerformbook

  • Loads dropped DLL

  • Suspicious use of SetThreadContext

  behavioral1behavioral2