formbook

General

Target

e090659ceddf516afe22c05a1d7c421e_JaffaCakes118
Size

480KB
Sample

240914-tt1fcsshll
MD5

e090659ceddf516afe22c05a1d7c421e
SHA1

9d689fe9ccf3d1ea8b19fc4330c779b5a2b95a82
SHA256

a8ec85bda1213a2c4bace2c6bb0eed7116bbd7fd6111bcb52501844b84c2aeea
SHA512

f88b170a97186ef4599f0e2e5e69dd584fd5c4811c02d18726b9309a774687251f669b761e34175383d7dd16a4fd1b540a0113d049135ef42145f651ee9b6636
SSDEEP

6144:BGaCrFURkb6dBVHaIh/8SUJX5RVUCZlFGvsnQoG5YaJise4IeEzNlV/IaQ:EKkA9FSUC8OQoRaJisewEzN

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

3.9

Campaign

i01

Decoy

viagensbaratasonline.com

lacuevaelmirlo.net

genevaly.com

analpornolariizle.com

rupee.network

pay69645.com

superhsr.com

foammemorymattress.com

jolded.com

bbb684.com

diabetessimplesweet.com

bybeast.com

keut.world

xxjj10.com

youde-88.com

highkickproductions.com

beijingzhjy.com

partnership-aid.com

sehorecollegesehore.com

wangluopay.com

Targets

- Target
  
  e090659ceddf516afe22c05a1d7c421e_JaffaCakes118
- Size
  
  480KB
- MD5
  
  e090659ceddf516afe22c05a1d7c421e
- SHA1
  
  9d689fe9ccf3d1ea8b19fc4330c779b5a2b95a82
- SHA256
  
  a8ec85bda1213a2c4bace2c6bb0eed7116bbd7fd6111bcb52501844b84c2aeea
- SHA512
  
  f88b170a97186ef4599f0e2e5e69dd584fd5c4811c02d18726b9309a774687251f669b761e34175383d7dd16a4fd1b540a0113d049135ef42145f651ee9b6636
- SSDEEP
  
  6144:BGaCrFURkb6dBVHaIh/8SUJX5RVUCZlFGvsnQoG5YaJise4IeEzNlV/IaQ:EKkA9FSUC8OQoRaJisewEzN
Score

10^/10

formbook i01 discovery rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook payload

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2