formbook

General

Target

8f361d8882f426ba9ebfe5c5d76a9a459cb8554d93c369864726dda441026876
Size

926KB
Sample

221209-cl6tqsca97
MD5

fbcb87e65d3a23b4fe229aeace34621f
SHA1

8139f123069e7e7632331779de8ed6d5031efcd1
SHA256

8f361d8882f426ba9ebfe5c5d76a9a459cb8554d93c369864726dda441026876
SHA512

1585b0c6b35bf4cb2c00b82079755e1c536d0a912c307fbbb2028e28b9f88d0cfd9272d459836b064a9893983dd25c1fba2aeeff25ab4ba50c9fd664ff25bd36
SSDEEP

12288:8UUq1vQWztAJchTCRjN1McME0s2BJOwxmGr5t:V17W2hTMN1tZ0s2BJOwxV

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

awqu

Decoy

soltwin24horas.com

kaiget.com

majalahlangitan.com

preventable.top

caronandtom.com

2222k06.com

hdrezkart54ff.net

supermessage.xyz

dezeenb.com

bestatakes.xyz

californiasportsbar.com

hxg66.xyz

localxgirl.online

educ-ability.com

b2breferralshop.online

miamicollisioncenter.com

bjcxqcdb.com

barrineauparkbees.com

robotics6.com

web-bastler.com

Targets

- Target
  
  8f361d8882f426ba9ebfe5c5d76a9a459cb8554d93c369864726dda441026876
- Size
  
  926KB
- MD5
  
  fbcb87e65d3a23b4fe229aeace34621f
- SHA1
  
  8139f123069e7e7632331779de8ed6d5031efcd1
- SHA256
  
  8f361d8882f426ba9ebfe5c5d76a9a459cb8554d93c369864726dda441026876
- SHA512
  
  1585b0c6b35bf4cb2c00b82079755e1c536d0a912c307fbbb2028e28b9f88d0cfd9272d459836b064a9893983dd25c1fba2aeeff25ab4ba50c9fd664ff25bd36
- SSDEEP
  
  12288:8UUq1vQWztAJchTCRjN1McME0s2BJOwxmGr5t:V17W2hTMN1tZ0s2BJOwxV
Score

10^/10

formbook awqu rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook payload
  rat
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook payload

Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2