Overview

overview

10

Static

static

10

912-59-0x0...ry.exe

windows7-x64

1

912-59-0x0...ry.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    912-59-0x0000000000400000-0x000000000042F000-memory.dmp

  • Size

    188KB

  • Sample

    230613-lblv9aff43

  • MD5

    203b26c534f153cc9717b2f56330807a

  • SHA1

    da75ddb8faf6fb43dd47a040e9e12454740dcc85

  • SHA256

    7fadb74ad80086fe72daa144d388655ba5c39c952f128adec5259b580ea0ae6c

  • SHA512

    af2c07879603b2a6c3100b1f5299ae4b40e481286ecba9827bb5deff87796b9be56f7606d5c514ee731ad4085dfe74d056ae15d117ca4d267987dab189c6dff9

  • SSDEEP

    3072:nEeE9BfbzO62H6+/KH64tcjG6wdusy7VXmmtaCsxNIy:mg68hKH64taF5pmuy

Score
10/10
formbookhs95rat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

hs95

Decoy

episcopus.biz

kyinyuanwoaini1.com

guhut.com

landslot88.monster

highefficientwindow.com

nesainvestments.com

internettheworldisyours.com

corruptionapparel.com

eliteleaderofcharacter.com

babolcai.sbs

youreasttennesseerealtor.com

orbit4dads.com

jassimple.site

divasdecorating.com

chaviaggarwallajababfood.com

dyj97.com

cotaarquitectura.store

geldmaz.com

ulific.com

cell-phones-0406-da-sa-fb.xyz

Targets

    • Target

      912-59-0x0000000000400000-0x000000000042F000-memory.dmp

    • Size

      188KB

    • MD5

      203b26c534f153cc9717b2f56330807a

    • SHA1

      da75ddb8faf6fb43dd47a040e9e12454740dcc85

    • SHA256

      7fadb74ad80086fe72daa144d388655ba5c39c952f128adec5259b580ea0ae6c

    • SHA512

      af2c07879603b2a6c3100b1f5299ae4b40e481286ecba9827bb5deff87796b9be56f7606d5c514ee731ad4085dfe74d056ae15d117ca4d267987dab189c6dff9

    • SSDEEP

      3072:nEeE9BfbzO62H6+/KH64tcjG6wdusy7VXmmtaCsxNIy:mg68hKH64taF5pmuy

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks