Extracted

• • Target

    Purchase Order number n° 20220741.exe

  • Size

    995KB

  • MD5

    78555e148afa5a103c938dcd5da2293c

  • SHA1

    e1a03ff97dd2ae0d2244c5694ec409de141b4d23

  • SHA256

    ad7b11d538d1b3e39d30c7cd9523c744cd1dc061002aa38d0779b67c923b5945

  • SHA512

    b50b7f929fceb85f30194595c86a371db00e3a5ecc92849fe06f177fbf5c5fbe01d5f0af9c79016de253c72da1ca80db0320fffc7a6aad5f640e7f68bfb133b1

  • SSDEEP

    12288:9kY09G/Ju+/rXNzQTETwB9kzy7U0EAgcQVkN8Cs/jdv6cx:9kZG/Ju+T2ETK9+KU0UcACGv

  Score

  10^/10

  formbooks11nratspywarestealertrojan

  • Formbook

    Formbook is a data stealing malware which is capable of stealing data.

    trojanspywarestealerformbook

  • Formbook payload

    rat

  • Deletes itself

  • Suspicious use of SetThreadContext

  behavioral1behavioral2