formbook

General

Target

b0adb7c3e887e6bcbe21abcf54851718f7eceeef31f570a76fb648ecb204cc89
Size

624KB
Sample

221130-qezczaff7t
MD5

1852f73f39ab8c254e5a32b6dc87a4c1
SHA1

86f2cd8e3db60ce3e29b89501d2d79f802b1e35a
SHA256

b0adb7c3e887e6bcbe21abcf54851718f7eceeef31f570a76fb648ecb204cc89
SHA512

7f6114e9178010de101af204fd106a306a60d82a442b5e274e86279d196683fe53ffa00cb368bdcf873ebf4769f4db8b934f4767d9a60ebce1dd8d2699b2a866
SSDEEP

6144:DYdS4Ty2u4np1m91T7eqEP5vzL2WBCB9hJo1RAKks6:DB46wqFE0YCBRo1RABs

Score

10^/10

formbook di rat spyware stealer trojan

Malware Config

Extracted

Family

formbook

Version

3.8

Campaign

di

Decoy

baoxiaofan.com

bestwaycartage.com

sag-architecture.com

salamcanteen.com

clinicalpsychologistkerala.com

mttv222.com

theweproject.com

fybbracelets.net

vv666h.com

bangfupin.com

arkprojetos.com

realgoaldigger.com

pilotedphotography.com

6zonxm55.biz

gaoduanmi.com

aminahmad.com

bountymarketing.net

christopher-rennebach.com

02xjys.faith

estilomiau.com

Targets

- Target
  
  b0adb7c3e887e6bcbe21abcf54851718f7eceeef31f570a76fb648ecb204cc89
- Size
  
  624KB
- MD5
  
  1852f73f39ab8c254e5a32b6dc87a4c1
- SHA1
  
  86f2cd8e3db60ce3e29b89501d2d79f802b1e35a
- SHA256
  
  b0adb7c3e887e6bcbe21abcf54851718f7eceeef31f570a76fb648ecb204cc89
- SHA512
  
  7f6114e9178010de101af204fd106a306a60d82a442b5e274e86279d196683fe53ffa00cb368bdcf873ebf4769f4db8b934f4767d9a60ebce1dd8d2699b2a866
- SSDEEP
  
  6144:DYdS4Ty2u4np1m91T7eqEP5vzL2WBCB9hJo1RAKks6:DB46wqFE0YCBRo1RABs
Score

10^/10

formbook di rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2