formbook

General

Target

c38e252bf82b1d155df0c354432c04db13130b9d7f33829833657b5371f48c82
Size

624KB
Sample

221130-vg3wdshb92
MD5

224415658b7fe419d28d7b15923f758f
SHA1

c912d226842d016a1e92b1aa6ee56c2fec155452
SHA256

c38e252bf82b1d155df0c354432c04db13130b9d7f33829833657b5371f48c82
SHA512

bba0f732dc024836df250ac7f7ae2cf0af0fa5885ac3c77c87697493f1b50cada106d2bc986e186f83f50ca0d6a00653ba42d4cbd129462918d477849d5cc01f
SSDEEP

6144:Ea+Cown7kBE0KEK+3hndPyzfQUxynTXlRxLuSaOe8zI9:X37kBECKMndqzfRynxRxL9

Score

10^/10

formbook di rat spyware stealer trojan

Malware Config

Extracted

Family

formbook

Version

3.8

Campaign

di

Decoy

baoxiaofan.com

bestwaycartage.com

sag-architecture.com

salamcanteen.com

clinicalpsychologistkerala.com

mttv222.com

theweproject.com

fybbracelets.net

vv666h.com

bangfupin.com

arkprojetos.com

realgoaldigger.com

pilotedphotography.com

6zonxm55.biz

gaoduanmi.com

aminahmad.com

bountymarketing.net

christopher-rennebach.com

02xjys.faith

estilomiau.com

Targets

- Target
  
  c38e252bf82b1d155df0c354432c04db13130b9d7f33829833657b5371f48c82
- Size
  
  624KB
- MD5
  
  224415658b7fe419d28d7b15923f758f
- SHA1
  
  c912d226842d016a1e92b1aa6ee56c2fec155452
- SHA256
  
  c38e252bf82b1d155df0c354432c04db13130b9d7f33829833657b5371f48c82
- SHA512
  
  bba0f732dc024836df250ac7f7ae2cf0af0fa5885ac3c77c87697493f1b50cada106d2bc986e186f83f50ca0d6a00653ba42d4cbd129462918d477849d5cc01f
- SSDEEP
  
  6144:Ea+Cown7kBE0KEK+3hndPyzfQUxynTXlRxLuSaOe8zI9:X37kBECKMndqzfRynxRxL9
Score

10^/10

formbook di rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2