Overview

overview

10

Static

static

10

568-93-0x0...ry.exe

windows7-x64

1

568-93-0x0...ry.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    568-93-0x0000000000400000-0x0000000001462000-memory.dmp

  • Size

    16.4MB

  • Sample

    230405-lrtk2ach85

  • MD5

    9b8799611491527b065b31fa974111d1

  • SHA1

    4455b7930d2b3e1c1b6372de45884dd0666563e2

  • SHA256

    9808160bfdaa769abaaab77d415e35c1f7abbfc7fb6197671ba11d0cea5b9400

  • SHA512

    b0e28c4e3bc2e8d89d3b116e2f33110383a0e454ed5887392450dc2efcbf458ad980da479bad2636988f4a3a4ea564bf903718777dc1837b4c9b4b8fff6b8307

  • SSDEEP

    3072:EZK3FTiUz9y//3ub+shC9oSwvr4EnqE0/ZfrddSCqm8ADIDJh:G9mb+AC9yr4EnqzxrXPqm8J

Score
10/10
formbooku34frat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

u34f

Decoy

carpool.bar

badburyparkbakery.co.uk

aigooglebot.com

arihantautogas.com

specmart.online

newschatgpt.net

mmcroberts.com

ativeerrtechnologies.com

pheonix-blog-lomg-1098.com

simplisetup.com

teorikatapublishing.com

stephanyvgrfingle.click

tropicoa.com

isystem.world

tiger-lion.space

mackenziefarms.net

tl8841.buzz

alfabank.credit

lockdaccesactolapqqk.com

directaccesspetroleum.com

Targets

    • Target

      568-93-0x0000000000400000-0x0000000001462000-memory.dmp

    • Size

      16.4MB

    • MD5

      9b8799611491527b065b31fa974111d1

    • SHA1

      4455b7930d2b3e1c1b6372de45884dd0666563e2

    • SHA256

      9808160bfdaa769abaaab77d415e35c1f7abbfc7fb6197671ba11d0cea5b9400

    • SHA512

      b0e28c4e3bc2e8d89d3b116e2f33110383a0e454ed5887392450dc2efcbf458ad980da479bad2636988f4a3a4ea564bf903718777dc1837b4c9b4b8fff6b8307

    • SSDEEP

      3072:EZK3FTiUz9y//3ub+shC9oSwvr4EnqE0/ZfrddSCqm8ADIDJh:G9mb+AC9yr4EnqzxrXPqm8J

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks