formbook

General

Target

5ed7771fa76d173478e48c3d7fd8e21e_JaffaCakes118
Size

676KB
Sample

240520-nnlr5aab4w
MD5

5ed7771fa76d173478e48c3d7fd8e21e
SHA1

eef3963acdb8e333cd0316df7c45a884aa34d599
SHA256

c9460750e27798fb82762121ca8b1c5d3e864c9510f299155b104d09661d81f7
SHA512

6905843b4b563c1c314fb146e4cf74f1dc06cc4c2a79c8a75f83503812f7ff11b1534bfbaf46d411325e62959c93136f22dbcac4510022efb4dfdfce997d3e73
SSDEEP

12288:gUmKyCFAZvwxZxmlnuMoiDLfKCYVrP1OUjfcqyD:T1yCe5wxZxmxjoiDLC9rmqyD

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

3.8

Campaign

main

Decoy

9991991.com

1y3threenow.men

creativity.style

universecoolest.com

scuritylgin.com

primiprincipale.com

xn--rtsel-ag-0za.com

pulitzerbogard.net

multabux.biz

oitdemo.com

d86strong.com

nuacht.news

ferydan.com

fr-om-us.com

shaqfs.com

milliontarget.win

agjdo.info

drugalcoholtreatment-boston.com

niukrar.com

tributemarket.com

Targets

- Target
  
  5ed7771fa76d173478e48c3d7fd8e21e_JaffaCakes118
- Size
  
  676KB
- MD5
  
  5ed7771fa76d173478e48c3d7fd8e21e
- SHA1
  
  eef3963acdb8e333cd0316df7c45a884aa34d599
- SHA256
  
  c9460750e27798fb82762121ca8b1c5d3e864c9510f299155b104d09661d81f7
- SHA512
  
  6905843b4b563c1c314fb146e4cf74f1dc06cc4c2a79c8a75f83503812f7ff11b1534bfbaf46d411325e62959c93136f22dbcac4510022efb4dfdfce997d3e73
- SSDEEP
  
  12288:gUmKyCFAZvwxZxmlnuMoiDLfKCYVrP1OUjfcqyD:T1yCe5wxZxmxjoiDLC9rmqyD
Score

10^/10

formbook main rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2