formbook | 75bee8dab2d9231919a0bbf420f70a5ea08cfde94fe69ca8fc03f4720ff95a22

General

Target

9dbffd73c849f7975aa3705947647650N.exe
Size

188KB
Sample

240803-p75j1sydlc
MD5

9dbffd73c849f7975aa3705947647650
SHA1

4a846b2f8b08344d7653023f6b8baeba9652d565
SHA256

75bee8dab2d9231919a0bbf420f70a5ea08cfde94fe69ca8fc03f4720ff95a22
SHA512

35dc1d2b3277d682c26512f1637668b50b40432610ca12f278f9d75d2da79c0ec052262d2248a849a00b65537a66f15b0a764bb17a8759bfde6784bf7dde5217
SSDEEP

3072:5ZFZzk/XkacJaIK332BnF8g2qFQJxuwccBAUfbDWC1Hetvcor:vNZM3SnF8RqFQJxdcEAAic

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

by21

Decoy

digitalillusions.net

changeblue25.com

kitchenwoow.com

grupocontigoalimentacion.com

iranabr.com

embodiedmagic.com

superstoreszone.com

apartments-for-rent-46883.bond

kelbagnole.com

rideskratchlab.com

a06kng.club

saddlebredallstars.xyz

filepd.com

kxetdf.asia

dl39yy.com

jackedsearch.com

exodusprofessionaldetailing.com

ecommerce-40144.bond

uh3b94g3pyczi9t.skin

dcmcc635i.xyz

Targets

- Target
  
  9dbffd73c849f7975aa3705947647650N.exe
- Size
  
  188KB
- MD5
  
  9dbffd73c849f7975aa3705947647650
- SHA1
  
  4a846b2f8b08344d7653023f6b8baeba9652d565
- SHA256
  
  75bee8dab2d9231919a0bbf420f70a5ea08cfde94fe69ca8fc03f4720ff95a22
- SHA512
  
  35dc1d2b3277d682c26512f1637668b50b40432610ca12f278f9d75d2da79c0ec052262d2248a849a00b65537a66f15b0a764bb17a8759bfde6784bf7dde5217
- SSDEEP
  
  3072:5ZFZzk/XkacJaIK332BnF8g2qFQJxuwccBAUfbDWC1Hetvcor:vNZM3SnF8RqFQJxdcEAAic
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2