formbook

General

Target

7dfba2209cd14b67b14c28b534533a81_JaffaCakes118
Size

740KB
Sample

240528-xbbk3afe5x
MD5

7dfba2209cd14b67b14c28b534533a81
SHA1

8ed630c58f03bbb22ee5ddce0c88e15e44f9cfdf
SHA256

9a334620bca44564ece1da65cf3ef954e55da5a16de87aeed58f8036fa0ff7d4
SHA512

6c41c343de8c4af952991b1e7dc107a458cfa474af389603abc758c1e3c5520e032691e1e5eb7cf19d73f4f0aa625a294a0d1604687c5a02d8c32a70d9dee0fd
SSDEEP

6144:cACsqwf25Zu7nSSKU+XihRgOlNiL15fZn1Dh/9LCVWaUSN2xyenER0u+GIIIIIIq:cFwf2ikU+iR3iLfZn1DVNCvUSN2Cm5

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

3.8

Campaign

lib

Decoy

porteconnecteepourtous.com

digitalcaribbean.live

accountantbelmontca.com

facebase.online

754opebet.com

casandreno.com

tattoosin.com

sonrel-julie.com

coverbaches.com

miwa.tech

solfulandwell.com

australiarandf.com

pharmacy-for-saleonline.com

3faj4jeu7t.com

hotsofasol.com

aiareallife.com

bossrushmode.com

shsk626.com

collagenactivate.com

biglaughcreative.com

Targets

- Target
  
  7dfba2209cd14b67b14c28b534533a81_JaffaCakes118
- Size
  
  740KB
- MD5
  
  7dfba2209cd14b67b14c28b534533a81
- SHA1
  
  8ed630c58f03bbb22ee5ddce0c88e15e44f9cfdf
- SHA256
  
  9a334620bca44564ece1da65cf3ef954e55da5a16de87aeed58f8036fa0ff7d4
- SHA512
  
  6c41c343de8c4af952991b1e7dc107a458cfa474af389603abc758c1e3c5520e032691e1e5eb7cf19d73f4f0aa625a294a0d1604687c5a02d8c32a70d9dee0fd
- SSDEEP
  
  6144:cACsqwf25Zu7nSSKU+XihRgOlNiL15fZn1Dh/9LCVWaUSN2xyenER0u+GIIIIIIq:cFwf2ikU+iR3iLfZn1DVNCvUSN2Cm5
Score

10^/10

formbook lib rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2