Overview

overview

10

Static

static

10

2104-90-0x...ry.exe

windows7-x64

1

2104-90-0x...ry.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2104-90-0x0000000000400000-0x0000000000581000-memory.dmp

  • Size

    1.5MB

  • Sample

    240325-wahgjsed48

  • MD5

    664963e2a148b90038e34c66843ed77d

  • SHA1

    9bfcf356591bc6713ede92b294ea5cd0e6bb6ccc

  • SHA256

    aa1f7ee1ad2e39b36ab1471359c5419ac63b7729235f94e6d92c71573a5b88a8

  • SHA512

    b7af7c122276bce8f53677bfd50953bae8f41db9ff380b99dcc18cef3b6f0a6bf0e1ff748e18d22cdca8212b7fdc03dbf7f645ad7e29dd32d1f5e119d6b54be5

  • SSDEEP

    3072:sSmmsFk55GvbxfPe3nzGdBC6sT0B4Nd1bLDlUk9SA0k6koJ4:T5YH4nSHC6sT0Bed1HxvSjk6N4

Score
10/10
formbookmo46rat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

mo46

Decoy

mnt75.link

3531.vip

mtb-treasusry.com

jgdripcases.com

fuwnjq5d.shop

viralking.shop

eternalflorist.store

fangsgang.media

healthinsuranceudeserve.com

nomadadvertiser.com

iwuqb.pics

marlboro-nissan.com

massagemdossonhos.online

guhapplay.com

ingenieriaautomotriz56.com

email-555.com

mirarestaurants.com

theblueflamelabs.us

floristeriatheclover.com

mpmngr.online

Targets

    • Target

      2104-90-0x0000000000400000-0x0000000000581000-memory.dmp

    • Size

      1.5MB

    • MD5

      664963e2a148b90038e34c66843ed77d

    • SHA1

      9bfcf356591bc6713ede92b294ea5cd0e6bb6ccc

    • SHA256

      aa1f7ee1ad2e39b36ab1471359c5419ac63b7729235f94e6d92c71573a5b88a8

    • SHA512

      b7af7c122276bce8f53677bfd50953bae8f41db9ff380b99dcc18cef3b6f0a6bf0e1ff748e18d22cdca8212b7fdc03dbf7f645ad7e29dd32d1f5e119d6b54be5

    • SSDEEP

      3072:sSmmsFk55GvbxfPe3nzGdBC6sT0B4Nd1bLDlUk9SA0k6koJ4:T5YH4nSHC6sT0Bed1HxvSjk6N4

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks