Overview

overview

10

Static

static

10

2668-74-0x...ry.exe

windows7-x64

1

2668-74-0x...ry.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2668-74-0x0000000000400000-0x000000000042F000-memory.dmp

  • Size

    188KB

  • Sample

    240517-jen4nsga72

  • MD5

    7046d3a77611a79d843fabff2ad733fd

  • SHA1

    3a856df45df9a6cfea4a0f75a3f79423ece00c67

  • SHA256

    bb00020ce5c7320692e68e5d8258a7126c0ac316e705cf13ffb6441db2f56dd4

  • SHA512

    f52ebea089dc0e271d799348c294091173b740b69515eddb7bceae58cf0549f0457a1c2d016e17762fc39d54afbca7d40b2aead811ce22061998a33ff3c97183

  • SSDEEP

    3072:ygPGkujgM9kZdK3uJJijaKPtMb8FDopeap02R6mV:kQdMu/6aKPtMb8dopef2R6k

Score
10/10
formbookdn03rat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

dn03

Decoy

almouranipainting.com

cataloguia.shop

zaparielectric.com

whcqsc.com

ioco.in

aduredmond.com

vavada611a.fun

humtivers.com

jewellerytml.com

mcapitalparticipacoes.com

inhlcq.shop

solanamall.xyz

moviepropgroup.com

thegenesis.ltd

cyberxdefend.com

skinbykoco.com

entermintlead.com

honestaireviews.com

wyclhj7gqfustzp.buzz

w937xb.com

Targets

    • Target

      2668-74-0x0000000000400000-0x000000000042F000-memory.dmp

    • Size

      188KB

    • MD5

      7046d3a77611a79d843fabff2ad733fd

    • SHA1

      3a856df45df9a6cfea4a0f75a3f79423ece00c67

    • SHA256

      bb00020ce5c7320692e68e5d8258a7126c0ac316e705cf13ffb6441db2f56dd4

    • SHA512

      f52ebea089dc0e271d799348c294091173b740b69515eddb7bceae58cf0549f0457a1c2d016e17762fc39d54afbca7d40b2aead811ce22061998a33ff3c97183

    • SSDEEP

      3072:ygPGkujgM9kZdK3uJJijaKPtMb8FDopeap02R6mV:kQdMu/6aKPtMb8dopef2R6k

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks