formbook

General

Target

5396b22800da1f1c7528ae67a5fe011d_JaffaCakes118
Size

336KB
Sample

240518-jajcmahf29
MD5

5396b22800da1f1c7528ae67a5fe011d
SHA1

4fdd0248152166f9821e8e447476d595740dae7f
SHA256

fd37a492eb083eb43dfd53cf28f0a0840e1bab5a68937080d764ea4df9f90945
SHA512

31b407d54af8f8966403c79b3fcd251e4c99d26d693d6774564800f862920cea7f9d3e4a68141512b5aab87b170fde6ad06b656151a7937bd816a1c0591fdd4b
SSDEEP

6144:BsKxheSkTu7k0XwWcmoO1HvfvCXRSq40wO8qxtW2HXkZ:BsuheSeuY0glm31/CXT4hgA2HXkZ

Score

10^/10

formbook ca rat spyware stealer trojan

Malware Config

Extracted

Family

formbook

Version

3.8

Campaign

ca

Decoy

tirtatv.com

thefinalreviews.com

lakesidesrealtor.net

jilinjijin.com

packfreshcannabis.com

mohammedfakiha.com

oilxl.info

xn--doqu1wc86axnn.com

core-marlk.com

truyenvoz.info

ptamed.com

y31000.com

tredaily.com

jsaswkj.com

xiunan.net

panaceagluta.com

kenanalifd.com

0513gx.com

kpdvk04wr3.biz

riobaretanning.com

Targets

- Target
  
  5396b22800da1f1c7528ae67a5fe011d_JaffaCakes118
- Size
  
  336KB
- MD5
  
  5396b22800da1f1c7528ae67a5fe011d
- SHA1
  
  4fdd0248152166f9821e8e447476d595740dae7f
- SHA256
  
  fd37a492eb083eb43dfd53cf28f0a0840e1bab5a68937080d764ea4df9f90945
- SHA512
  
  31b407d54af8f8966403c79b3fcd251e4c99d26d693d6774564800f862920cea7f9d3e4a68141512b5aab87b170fde6ad06b656151a7937bd816a1c0591fdd4b
- SSDEEP
  
  6144:BsKxheSkTu7k0XwWcmoO1HvfvCXRSq40wO8qxtW2HXkZ:BsuheSeuY0glm31/CXT4hgA2HXkZ
Score

10^/10

formbook ca rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2