General

  • Target

    1784-21-0x0000000000400000-0x000000000042F000-memory.dmp

  • Size

    188KB

  • Sample

    231011-y2jvssah7t

  • MD5

    4c3f3a5d08b86d5a7742f7d34feef30a

  • SHA1

    30c557ce126d8a70a8d45388664432b6a5b3402b

  • SHA256

    2f325caebf07d163e78cb09de0122d390dcb00d0f65300d08c913cc4c2c7f01d

  • SHA512

    860c421d72dff8af2068343eb7a2d456df1d8b20ea7233329aa0243265d54f645836b9122958ff3b0e8b55593e5aa2f9c0d0e56394394f16d6ef2b6dc82c3992

  • SSDEEP

    3072:tcVHE4TKnfAw03uCR5pet5Z4FI12d1YEZz0jqzSQspHlIT:yEauqM56e1U1YEqWS1F4

Score
10/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

ey16

Decoy

slimshotonline.com

rifaboa.com

metallzauber.com

jabandfuel.com

reacthat.com

qcgaeu.top

ssongg446.cfd

29kuan7.cfd

101agh.com

reliablii.com

luginfinity.com

e513.cloud

k4lantar.sbs

etoempire.com

phons.info

vovacom.com

birbakalim.fun

wellhousesctx.com

flthg.link

strasburgangus.com

Targets

    • Target

      1784-21-0x0000000000400000-0x000000000042F000-memory.dmp

    • Size

      188KB

    • MD5

      4c3f3a5d08b86d5a7742f7d34feef30a

    • SHA1

      30c557ce126d8a70a8d45388664432b6a5b3402b

    • SHA256

      2f325caebf07d163e78cb09de0122d390dcb00d0f65300d08c913cc4c2c7f01d

    • SHA512

      860c421d72dff8af2068343eb7a2d456df1d8b20ea7233329aa0243265d54f645836b9122958ff3b0e8b55593e5aa2f9c0d0e56394394f16d6ef2b6dc82c3992

    • SSDEEP

      3072:tcVHE4TKnfAw03uCR5pet5Z4FI12d1YEZz0jqzSQspHlIT:yEauqM56e1U1YEqWS1F4

    Score
    1/10

MITRE ATT&CK Matrix

Tasks