formbook | 844ebbd7d348c43ecce35fd33ba7638b14bc8be808e6beea900a9f3c8394919f

General

Target

2296-11-0x0000000000400000-0x000000000042F000-memory.dmp
Size

188KB
Sample

240911-pmqv5azfll
MD5

d600d079b112de0ee71cb46e583b279b
SHA1

1c0a881883fabca004bbf42db2b885fa6005483f
SHA256

844ebbd7d348c43ecce35fd33ba7638b14bc8be808e6beea900a9f3c8394919f
SHA512

7e01788925bdfa1b5876114fadcc285289e325e1295e8a8082b05af5b054e1a3c4752021fd9ae9021deb8008b050212462e8582f1a4a2e668e9049d2f1347e79
SSDEEP

3072:IeUEXsvkwozy3kJJ99PUqcjVkp9piUYZyH7nIo:Pcckk39mqcjVkp9psZyH7nIo

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

d16h

Decoy

iki-graphy.online

l8z8c.vip

1709.asia

inematography-course-72246.bond

pis3noe2e.sbs

wernv.xyz

ovepepe.xyz

ama-online.world

ookmouse.fun

harkclothingdesigns.xyz

bbvvjuiqew.bond

sed-cars-93620.bond

esgateeganhe.shop

cekmeledak.info

ebulahorizon.buzz

peakers-92991.bond

essislotgoal16.top

hafi.biz

ichunyang.club

lrica.net

Targets

- Target
  
  2296-11-0x0000000000400000-0x000000000042F000-memory.dmp
- Size
  
  188KB
- MD5
  
  d600d079b112de0ee71cb46e583b279b
- SHA1
  
  1c0a881883fabca004bbf42db2b885fa6005483f
- SHA256
  
  844ebbd7d348c43ecce35fd33ba7638b14bc8be808e6beea900a9f3c8394919f
- SHA512
  
  7e01788925bdfa1b5876114fadcc285289e325e1295e8a8082b05af5b054e1a3c4752021fd9ae9021deb8008b050212462e8582f1a4a2e668e9049d2f1347e79
- SSDEEP
  
  3072:IeUEXsvkwozy3kJJ99PUqcjVkp9piUYZyH7nIo:Pcckk39mqcjVkp9psZyH7nIo
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2