Overview

overview

10

Static

static

10

58f87ff113...18.exe

windows7-x64

1

58f87ff113...18.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    58f87ff11322ea0421a87c8b74362b45_JaffaCakes118

  • Size

    167KB

  • Sample

    240519-g4vawaec5v

  • MD5

    58f87ff11322ea0421a87c8b74362b45

  • SHA1

    d8a892691605956776e1f2c8584fe84f707aa8ca

  • SHA256

    22771e4d27fb5d2d296872c43020646c320573930c62af9926d38459b86e5fa3

  • SHA512

    ac69b78a0dcee3e70889e243268ed9e8fef0c853411aa2357da20c8a82142dc36730599ed7ecf545c19415cc67928411b11ae1ba0bb83830534b194eac7453b8

  • SSDEEP

    3072:kUds6ucaMaSP8ru+LrJFoHhRjSS+uKdYo+AOr5nGRA9Qx9X9/0kwiB2D:0NMa0mrJGHfjSS+uChOdnGROQxpmCm

Score
10/10
formbookh320rat

Malware Config

Extracted

Family

formbook

Version

3.8

Campaign

h320

Decoy

rounddiningtable.net

green.agency

lingquan.group

integrityinternationalltd.com

mywoodenshed.date

sur-mon-nuage.com

lolatillyaeva.properties

connercapitalinvestments.com

bennaulls.com

0731wt.com

sua-casa.com

688hongfeng.com

wifisnack.com

beetchain.com

leboucliervert.net

cem2018.com

yocoolchina.com

icronsite.com

typically.ltd

agulhasgroup.ltd

Targets

    • Target

      58f87ff11322ea0421a87c8b74362b45_JaffaCakes118

    • Size

      167KB

    • MD5

      58f87ff11322ea0421a87c8b74362b45

    • SHA1

      d8a892691605956776e1f2c8584fe84f707aa8ca

    • SHA256

      22771e4d27fb5d2d296872c43020646c320573930c62af9926d38459b86e5fa3

    • SHA512

      ac69b78a0dcee3e70889e243268ed9e8fef0c853411aa2357da20c8a82142dc36730599ed7ecf545c19415cc67928411b11ae1ba0bb83830534b194eac7453b8

    • SSDEEP

      3072:kUds6ucaMaSP8ru+LrJFoHhRjSS+uKdYo+AOr5nGRA9Qx9X9/0kwiB2D:0NMa0mrJGHfjSS+uChOdnGROQxpmCm

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks