formbook

General

Target

21d7877338874475e35745d384f8b055.bin
Size

436KB
Sample

240509-bhm2sacd62
MD5

21d7877338874475e35745d384f8b055
SHA1

958c14397b51c2dbbe7661c7896d8f084bcba331
SHA256

b3c0e790921677e61c5f37252ed0702fe1bed4e37e1aeabe1aa83864aebd8b95
SHA512

b53977bc81dedb7c55e26754704035723a4e901cba3706b9f7487076cf623daecdfe6396b99bcc14ea50b000180820c20b8a0530188bd3f2f67fca2d73779ed6
SSDEEP

3072:0DeS7cfO2q/eS+U2gPG9e1WChPlQkqC3NXpVRK/2ufG0cJ7yr3vpgi8yBWX4BEVO:Sek2QeS2pqWCbZpVwmyrhg7doB8Ob

Score

10^/10

formbook wo rat spyware stealer trojan

Malware Config

Extracted

Family

formbook

Version

3.8

Campaign

wo

Decoy

zphang.com

limeiqi.net

louismail.net

allanchappelear.com

js-premium.com

cottonjam.com

misagigoldmining.com

cloudypro.site

qiangwuditan.net

1610k.com

0451tarena.com

hihihing.com

jameshale.net

062bifa.com

jiaopo95.com

bulliesintheboardroom.com

consultantsofcolornetwork.com

xshadyside.net

feriasemfoz.com

activationsetupnow.online

Targets

- Target
  
  21d7877338874475e35745d384f8b055.bin
- Size
  
  436KB
- MD5
  
  21d7877338874475e35745d384f8b055
- SHA1
  
  958c14397b51c2dbbe7661c7896d8f084bcba331
- SHA256
  
  b3c0e790921677e61c5f37252ed0702fe1bed4e37e1aeabe1aa83864aebd8b95
- SHA512
  
  b53977bc81dedb7c55e26754704035723a4e901cba3706b9f7487076cf623daecdfe6396b99bcc14ea50b000180820c20b8a0530188bd3f2f67fca2d73779ed6
- SSDEEP
  
  3072:0DeS7cfO2q/eS+U2gPG9e1WChPlQkqC3NXpVRK/2ufG0cJ7yr3vpgi8yBWX4BEVO:Sek2QeS2pqWCbZpVwmyrhg7doB8Ob
Score

10^/10

formbook wo rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2