Overview

overview

10

Static

static

10

2016-65-0x...ry.exe

windows7-x64

1

2016-65-0x...ry.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2016-65-0x0000000000400000-0x000000000042F000-memory.dmp

  • Size

    188KB

  • Sample

    221122-lybnsshd67

  • MD5

    5ca9a11fc4e3793aa18e33ca29b3f5d2

  • SHA1

    09a67c706f583d1792cf105002b8afa8cb13b9fc

  • SHA256

    742e09d1fca891ef48b70b5015eeb333875c2b9f1bfcc68671f3269438cb66d5

  • SHA512

    53ec5a97a4f394f51bfbe35d7494109b1d3b30554b7697056fa9dcd8037c41475d957fd88a57eb7dbd8b557b73e95026948461f8cb44614789072cb928d1bd61

  • SSDEEP

    3072:t3cBFywEdj1MYjXLa/RvgkDZqNdpbPM8RAk9AS2zgI0pRxeP1Ll:+tWLaZvHqNdpj7CWd2z0pXW

Score
10/10
formbookh3harat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

h3ha

Decoy

ideas-dulces.store

store1995.store

swuhn.com

ninideal.com

musiqhaus.com

quranchart.com

kszq26.club

lightfx.online

thetickettruth.com

meritloancubk.com

lawnforcement.com

sogeanetwork.com

thedinoexotics.com

kojima-ah.net

gr-myab3z.xyz

platiniuminestor.net

reviewsiske.com

stessil-lifestyle.com

goodqjourney.biz

cirimpianti.com

Targets

    • Target

      2016-65-0x0000000000400000-0x000000000042F000-memory.dmp

    • Size

      188KB

    • MD5

      5ca9a11fc4e3793aa18e33ca29b3f5d2

    • SHA1

      09a67c706f583d1792cf105002b8afa8cb13b9fc

    • SHA256

      742e09d1fca891ef48b70b5015eeb333875c2b9f1bfcc68671f3269438cb66d5

    • SHA512

      53ec5a97a4f394f51bfbe35d7494109b1d3b30554b7697056fa9dcd8037c41475d957fd88a57eb7dbd8b557b73e95026948461f8cb44614789072cb928d1bd61

    • SSDEEP

      3072:t3cBFywEdj1MYjXLa/RvgkDZqNdpbPM8RAk9AS2zgI0pRxeP1Ll:+tWLaZvHqNdpj7CWd2z0pXW

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks