Overview

overview

10

Static

static

10

5df985493e...12.exe

windows7-x64

1

5df985493e...12.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    24_5df985493ee4e1c58b4c0698ec38322284d805227b0110d4dae2d6139fba4412.zip

  • Size

    130KB

  • Sample

    230329-ksqp4afe82

  • MD5

    27d00104d240c6a01dc012502d5cb7c6

  • SHA1

    fe4d71f4c0b6d6b2549538ea9432351b4ad972f3

  • SHA256

    ac9cd34ce738d41b188e8c09023e18383a5a023ef9ddd900fed43fbc49e5c906

  • SHA512

    95b71417ed0d270bd0e538553821d01836fe7ffa34a024c4b70a2f40bed289aeb4d0453f4ea6e935a38cd8a4e4b711da6371e1bc5ba35104f1637ebf1634c553

  • SSDEEP

    3072:lP9Jr1T8+egwBLNYKxqG09//nX/Nfyr9CT5qVqA6:t9JBo+egYLJpkf/sET5GqP

Score
10/10
formbookmg24rat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

mg24

Decoy

jhae3jp.store

generalfirstaidcourse.com

breville-accounting.com

homeinthehamptonsny.com

amphibiamerch.store

lagosstateteacherawards.africa

955.global

longmaosh.com

crblwks.com

horliga.co.uk

classicdancehitzofficial.com

crytodefi.online

huachunjianshe-sh.com

hotel-la-cascada.xyz

avastate.com

cheapweedseeds.com

abgroupthailand.com

context-switching.com

drsolarshine.site

nxeliz.xyz

Targets

    • Target

      5df985493ee4e1c58b4c0698ec38322284d805227b0110d4dae2d6139fba4412

    • Size

      182KB

    • MD5

      2cf38de600357666f33ce136682e2244

    • SHA1

      36632cafefac473a6267681f4e2f985e0067887c

    • SHA256

      5df985493ee4e1c58b4c0698ec38322284d805227b0110d4dae2d6139fba4412

    • SHA512

      50f8e8ea063d0d2ffbf526b8ba056aab74ff99b7e36a9485dda74820183ee6ea5000b4738015bb4982f4cb8a293a25844f10c844189b5937e278ecd42226b0d5

    • SSDEEP

      3072:qIy/ko2vmKZy9zS9ObOfBmR6Z7LCWkSaFWEfZc6swR4qt/PsrYYdudt:k4yheObOfBsSkfZcApsrPdq

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks