General

  • Target

    1721304906070746219b5d08004f4e1b9c727f3ac75724696f9d0b3809f4a8cc6a17ecac83966.dat-decoded.exe

  • Size

    185KB

  • Sample

    240718-pffrksxgnq

  • MD5

    6a67106e88d371f083d1176c40d910a8

  • SHA1

    c9150ed72eca5bc210fc4e484d0b60fffdd7f115

  • SHA256

    ea9ccc051db7919d082ce7aa22386665e395a196ae870982e8897d8b81fd1f5b

  • SHA512

    542a74d6f657005bb169139870f3a5dcc0a2e604181ddc3a81114305f09e728afc4ea1ac5e27bef03cc89aaf25e6a85fddb79d2eff260a817dc87417da644ab2

  • SSDEEP

    3072:efANPkOPkBwge3EnaMm7yKaj2K5j5h+ZNWHHfVQwaQl2nU4M0u4:N84EaM4yKaj2s5hfHH7tf4fu

Score
10/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

sk49

Decoy

quickcash.agency

jf5i2of7h8kdl63.skin

fe25.top

powerfulpositive.com

flickbetegypt.com

sp20242.click

n3tro.com

hxpuog827m.top

willsbountifulcatering.com

rohmglobal.com

globalbuildingbrands.com

aircraft6loan.xyz

yt163.top

123sz8.buzz

00050280.xyz

layninder.com

mytistabenifits.com

golden-retriever-miniature.com

selfdiscoverywellness.com

somoka.com

Targets

    • Target

      1721304906070746219b5d08004f4e1b9c727f3ac75724696f9d0b3809f4a8cc6a17ecac83966.dat-decoded.exe

    • Size

      185KB

    • MD5

      6a67106e88d371f083d1176c40d910a8

    • SHA1

      c9150ed72eca5bc210fc4e484d0b60fffdd7f115

    • SHA256

      ea9ccc051db7919d082ce7aa22386665e395a196ae870982e8897d8b81fd1f5b

    • SHA512

      542a74d6f657005bb169139870f3a5dcc0a2e604181ddc3a81114305f09e728afc4ea1ac5e27bef03cc89aaf25e6a85fddb79d2eff260a817dc87417da644ab2

    • SSDEEP

      3072:efANPkOPkBwge3EnaMm7yKaj2K5j5h+ZNWHHfVQwaQl2nU4M0u4:N84EaM4yKaj2s5hfHH7tf4fu

    Score
    1/10

MITRE ATT&CK Matrix

Tasks