formbook | 486e66bcd5b9c2a69e198962c781025561b55fa4a8016b96c2d9a2858e6de269

General

Target

2908-6-0x0000000000400000-0x000000000042F000-memory.dmp
Size

188KB
Sample

240919-p3vt1szdmk
MD5

1f052999818c1802b676c7565329b63e
SHA1

31ddee6e0a0f9bb8cb30f55ee9b655713492b57a
SHA256

486e66bcd5b9c2a69e198962c781025561b55fa4a8016b96c2d9a2858e6de269
SHA512

212e910a72d175b5fe05247ad207a1ee4300581fb38e7fa20b063f8be419ee41ea69f69d362ae259b47d527d539afa7353f25c05b2f4cb9ae8b0213d38db191e
SSDEEP

3072:WtwbZ/kz0qsqhYx3vAliM02P2rbW2DK2Q/CnA6nD6Gdjbi1:X6LYtv8iMOrbW2O2wYlGX1

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

ot96

Decoy

yclingbear.studio

sxuio.xyz

eon-official-bk-o57v.buzz

teel.management

rusjitu.sbs

ighwald-holdings.info

ummitfinancal.vip

layvalleyconstruction.online

pp-games-efficsecuspon.xyz

ouh.shop

mgltd.services

gshsjwhgsg.fun

eidotijolo.online

yifg.sbs

nline-gaming-ox-mx.xyz

ux-money.info

inergiputraborneo.dev

panish-classes-67016.bond

reightrading.info

23bet.xyz

Targets

- Target
  
  2908-6-0x0000000000400000-0x000000000042F000-memory.dmp
- Size
  
  188KB
- MD5
  
  1f052999818c1802b676c7565329b63e
- SHA1
  
  31ddee6e0a0f9bb8cb30f55ee9b655713492b57a
- SHA256
  
  486e66bcd5b9c2a69e198962c781025561b55fa4a8016b96c2d9a2858e6de269
- SHA512
  
  212e910a72d175b5fe05247ad207a1ee4300581fb38e7fa20b063f8be419ee41ea69f69d362ae259b47d527d539afa7353f25c05b2f4cb9ae8b0213d38db191e
- SSDEEP
  
  3072:WtwbZ/kz0qsqhYx3vAliM02P2rbW2DK2Q/CnA6nD6Gdjbi1:X6LYtv8iMOrbW2O2wYlGX1
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2