formbook

General

Target

447928574570374f0141fde31d0315b0b67d8f31041713a20dfcf39ef835a20d
Size

935KB
Sample

221130-t3ng6aaf8s
MD5

6b0f3498efb94ac5901239b66beca9b6
SHA1

4fae458d0c899ec4a7666790f591cd9bc1ccda2d
SHA256

447928574570374f0141fde31d0315b0b67d8f31041713a20dfcf39ef835a20d
SHA512

868ac45340d634ff201a90b35a5d9ad110451bc81133f3efd89e101d5bff5a476dd56470e2dd2a73609721a84b64f6bc6fec6cdf4610eaf74b5dc3aaae98062c
SSDEEP

24576:cgjT2arSoRr8X8oclSG4ctgEExxmzT4RUHo6CW4TrtxqsttS8c6H:cyyarb178KtMxYzsRL6j4TJxqsER6H

Score

10^/10

formbook th rat spyware stealer trojan

Malware Config

Extracted

Family

formbook

Version

3.9

Campaign

th

Decoy

johnnydeppfilmleri.com

cellblockerbrasil.com

9524cc.com

garam.online

johnsdiscountsshoppingmall.com

rekorema.site

ppguest.net

melissaschwartz.loan

xdwhkj.com

wejinks.com

ruchicaterers.net

xn--pgb1o.com

ph-bigdata.com

vrkwa.info

teamjtaylor.com

slimedisco.com

lolitaallgyer.com

lunar.center

menselijkeorganisatie.com

therevolutionofknow.net

Targets

- Target
  
  447928574570374f0141fde31d0315b0b67d8f31041713a20dfcf39ef835a20d
- Size
  
  935KB
- MD5
  
  6b0f3498efb94ac5901239b66beca9b6
- SHA1
  
  4fae458d0c899ec4a7666790f591cd9bc1ccda2d
- SHA256
  
  447928574570374f0141fde31d0315b0b67d8f31041713a20dfcf39ef835a20d
- SHA512
  
  868ac45340d634ff201a90b35a5d9ad110451bc81133f3efd89e101d5bff5a476dd56470e2dd2a73609721a84b64f6bc6fec6cdf4610eaf74b5dc3aaae98062c
- SSDEEP
  
  24576:cgjT2arSoRr8X8oclSG4ctgEExxmzT4RUHo6CW4TrtxqsttS8c6H:cyyarb178KtMxYzsRL6j4TJxqsER6H
Score

10^/10

formbook th rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2