Extracted

• • Target

    SecuriteInfo.com.Trojan.Packed2.44597.10451.26456.exe

  • Size

    1.1MB

  • MD5

    3ad5c2d77a026c494a3901b35e53153a

  • SHA1

    4fde172bb7157d202a2b8c3145ee7f1d57042e3f

  • SHA256

    03184ccf472c9f6c3140a01951bee49169dbc204d637982c51f22ecfd68b5b2f

  • SHA512

    7d32a75642231e20fa99216d82d59d2f1651b44bd819a1bf527209da25accf1652c78f2b06ba626bfa94554b24377e1805f9bad29539cf21995e3cc8fe187f76

  • SSDEEP

    24576:3SGyjIyy0sJ205hSK77YT+LOO40mvemqqdOp:VyjIy3sJJjF77o+LOO4pqqdO

  Score

  10^/10

  formbookxloaderfofgloaderratspywarestealertrojan

  • Formbook

    Formbook is a data stealing malware which is capable of stealing data.

    trojanspywarestealerformbook

  • Xloader

    Xloader is a rebranded version of Formbook malware.

    loaderxloader

  • Xloader payload

    rat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2