formbook

General

Target

682a308af795b0542426eb8519f3ea1f_JaffaCakes118
Size

736KB
Sample

240522-wwjazabf69
MD5

682a308af795b0542426eb8519f3ea1f
SHA1

e91183813806c5a641824f717963c40b2df9b80c
SHA256

fcf79460d76c4fb62b3176e31e80f5a2d308571a44b2febf4732753952437361
SHA512

5471dad3c8b5daafd2e16b778c2b54104ad6c8a0c59ba3a77e0dfd9e37c9cf3a72cf7da54cc63904385793f74237101acad96ab3905243539bee96e8ce1f0220
SSDEEP

6144:zTOud2PugbKPEP0B+c0LvVpOT1mTqpFpUYrER0u+GIIIIIIIhIIIIIIIIIIIIII3:zTOMgboLw9TTmpsm5

Score

10^/10

formbook js rat spyware stealer trojan

Malware Config

Extracted

Family

formbook

Version

3.8

Campaign

js

Decoy

bensenmaoyi.com

baogold.com

ornellamultimedia.com

0-lqn5-x50-90bl4.com

nearmedesign.services

xuansenmuyi.com

tuktukdude.com

hedgepayday.com

0p0tenkey.men

tashanetea.com

candacehkang.com

benhvienphusansaigon.com

victoriasweitzer.com

lowellcremation.com

naturesgives.com

noengordar.com

mypictureparadise.com

upad.ltd

trailrack.com

stariptvitalia.com

Targets

- Target
  
  682a308af795b0542426eb8519f3ea1f_JaffaCakes118
- Size
  
  736KB
- MD5
  
  682a308af795b0542426eb8519f3ea1f
- SHA1
  
  e91183813806c5a641824f717963c40b2df9b80c
- SHA256
  
  fcf79460d76c4fb62b3176e31e80f5a2d308571a44b2febf4732753952437361
- SHA512
  
  5471dad3c8b5daafd2e16b778c2b54104ad6c8a0c59ba3a77e0dfd9e37c9cf3a72cf7da54cc63904385793f74237101acad96ab3905243539bee96e8ce1f0220
- SSDEEP
  
  6144:zTOud2PugbKPEP0B+c0LvVpOT1mTqpFpUYrER0u+GIIIIIIIhIIIIIIIIIIIIII3:zTOMgboLw9TTmpsm5
Score

10^/10

formbook js rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2