formbook

General

Target

97df6218d014d3baec9fbd9db8d8636fb726386995aa9c71936a21db9724d54b
Size

632KB
Sample

221130-tpz9sseh74
MD5

f297c5f4299eb2de76dfd943aa47cc51
SHA1

15f32d2324e5463613323202b350a2f0be1a53c1
SHA256

97df6218d014d3baec9fbd9db8d8636fb726386995aa9c71936a21db9724d54b
SHA512

4b10eef4599d0303ed736a0c97c81db1d1da6b2bca754883ecb1d695c91e999b076c44c49bf89dc5d394b031456762b9c361a805933b42290390d85dd633c968
SSDEEP

6144:CyiqVm7Hr5h9RUhseu+0kxO5NXuz1on0bCbYke50:XSL5hrUeetZEYoniCbYkF

Score

10^/10

formbook di rat spyware stealer trojan

Malware Config

Extracted

Family

formbook

Version

3.8

Campaign

di

Decoy

baoxiaofan.com

bestwaycartage.com

sag-architecture.com

salamcanteen.com

clinicalpsychologistkerala.com

mttv222.com

theweproject.com

fybbracelets.net

vv666h.com

bangfupin.com

arkprojetos.com

realgoaldigger.com

pilotedphotography.com

6zonxm55.biz

gaoduanmi.com

aminahmad.com

bountymarketing.net

christopher-rennebach.com

02xjys.faith

estilomiau.com

Targets

- Target
  
  97df6218d014d3baec9fbd9db8d8636fb726386995aa9c71936a21db9724d54b
- Size
  
  632KB
- MD5
  
  f297c5f4299eb2de76dfd943aa47cc51
- SHA1
  
  15f32d2324e5463613323202b350a2f0be1a53c1
- SHA256
  
  97df6218d014d3baec9fbd9db8d8636fb726386995aa9c71936a21db9724d54b
- SHA512
  
  4b10eef4599d0303ed736a0c97c81db1d1da6b2bca754883ecb1d695c91e999b076c44c49bf89dc5d394b031456762b9c361a805933b42290390d85dd633c968
- SSDEEP
  
  6144:CyiqVm7Hr5h9RUhseu+0kxO5NXuz1on0bCbYke50:XSL5hrUeetZEYoniCbYkF
Score

10^/10

formbook di rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2