Overview

overview

10

Static

static

10

4984-160-0...ry.exe

windows7-x64

1

4984-160-0...ry.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4984-160-0x0000000010410000-0x000000001043F000-memory.dmp

  • Size

    188KB

  • Sample

    230203-vz3ncagc94

  • MD5

    5f8292d26322511e452503929b225df8

  • SHA1

    5e94a6d369803d71bc0b5240cdd8df926d3b0808

  • SHA256

    fbf601d67ca605a3c2c2a794442182737e6e5e62bba80623d6a5a0fcea6c0c47

  • SHA512

    2520b22eeddf9082c91d4aae3e5dc889bf40022c018347c38578712d4e2bef74ebfbc0a5e6d57e2e7b38c46bce8abd326039580ccc9ce3f6c643851edca7e0b9

  • SSDEEP

    3072:JEHxMFxehbUGWpVxlR+crESRaVK0Y77E/G+6LTXdUZSCJ:+UpVztrESRaVi77wyjcS

Score
10/10
formbookn7akrat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

n7ak

Decoy

wise-transfer.info

jam-nins.com

thebestsocialcrm.com

majomeow222.com

ancientshadowguilt.space

gentleman-china.com

parquemermoz.store

taxuw.com

sharqiyapaints.com

libraryofkath.com

1949wan.com

synqr.net

bitchessgirls.com

btonu.cfd

coding-bootcamps-16314.com

leadership22-tdh.site

maximsboutique.com

irishsummertruffles.com

sdnaqianchuan.com

uyews.xyz

Targets

    • Target

      4984-160-0x0000000010410000-0x000000001043F000-memory.dmp

    • Size

      188KB

    • MD5

      5f8292d26322511e452503929b225df8

    • SHA1

      5e94a6d369803d71bc0b5240cdd8df926d3b0808

    • SHA256

      fbf601d67ca605a3c2c2a794442182737e6e5e62bba80623d6a5a0fcea6c0c47

    • SHA512

      2520b22eeddf9082c91d4aae3e5dc889bf40022c018347c38578712d4e2bef74ebfbc0a5e6d57e2e7b38c46bce8abd326039580ccc9ce3f6c643851edca7e0b9

    • SSDEEP

      3072:JEHxMFxehbUGWpVxlR+crESRaVK0Y77E/G+6LTXdUZSCJ:+UpVztrESRaVi77wyjcS

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks