Overview

overview

10

Static

static

10

1216-65-0x...ry.exe

windows7-x64

3

1216-65-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1216-65-0x0000000000400000-0x000000000042F000-memory.dmp

  • Size

    188KB

  • Sample

    221119-jedmyaaf35

  • MD5

    3793b385f0d394d80f741026f2b55837

  • SHA1

    ad7f1861f4faff0a7d35e733574b6fd2d65b4d93

  • SHA256

    2f17d4d25aba82e577a9cc21d634c971882fbecfc41639669647522bc82445f1

  • SHA512

    f929e18b3e2315237573cfc44832de98f4e8596579264459f1ab2dd30d3802b0d9793727d0553d79cdb0c7a08e2c9e3f655390c116be1417e36d52d181870ea5

  • SSDEEP

    3072:J57fMwH2rfOYw7L1mn6sWJ3YD2nPgYRO2yRcos/tPVBY1JMVJLkYs8kDvMEab:Jl9H0Wfe6LbPgeOBRcos/tPzY1JRJ8k

Score
10/10
formbookhenzrat

Malware Config

Extracted

Family

formbook

Campaign

henz

Decoy

IxWMb+jVsoinShuZJzk=

TPfKgQZ//oGnKr/J

EsK0WxD5kY65XOW1Td/5CxSUpCUytR7M

KebSmiCP9p8yUw==

HAt/ljkEuqMLHOLCi53Pv8MKX9qk

CY4ogZTwJc4vSw==

WWDIx5UYUDyepntE0YIAPca3/rI=

+Pkr01Lfb2rME7bL

S5nyK0p8jS2xdwQ=

W/oqvlO57LfkLcLHnQ==

zrrwtqkTLwxulm4l8FGopw==

AqucYext8bzFbOKthIm8E6gfVkUHxKY=

OfnjeDs78+RTcz4OHRl+

XKf1wwpZR5hLLjHgmUGOpQ==

JMyhSLoJPTCwn5o9zX2d8i1+

Wk54MBsDhWSVbnIRkQ==

7aaYR/tOhh9piTw5/KHSRwuK2iqgafw7pQ==

hH/EYxN+jC2xdwQ=

S0F4ORqDjS2xdwQ=

0o/UwXnuJ+sJp0cOHRl+

Targets

    • Target

      1216-65-0x0000000000400000-0x000000000042F000-memory.dmp

    • Size

      188KB

    • MD5

      3793b385f0d394d80f741026f2b55837

    • SHA1

      ad7f1861f4faff0a7d35e733574b6fd2d65b4d93

    • SHA256

      2f17d4d25aba82e577a9cc21d634c971882fbecfc41639669647522bc82445f1

    • SHA512

      f929e18b3e2315237573cfc44832de98f4e8596579264459f1ab2dd30d3802b0d9793727d0553d79cdb0c7a08e2c9e3f655390c116be1417e36d52d181870ea5

    • SSDEEP

      3072:J57fMwH2rfOYw7L1mn6sWJ3YD2nPgYRO2yRcos/tPVBY1JMVJLkYs8kDvMEab:Jl9H0Wfe6LbPgeOBRcos/tPzY1JRJ8k

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks