Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

5

New Order ...24.exe

windows7-x64

10

New Order ...24.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    New Order #60-23095840024.zip

  • Size

    833KB

  • Sample

    240930-kfvtaavgkj

  • MD5

    561fa366def6dde2d9a1c871abb3b769

  • SHA1

    87b564bdc180a875d8f2f04e0674518e3106cc31

  • SHA256

    646caffd61afaeca0fa3cb9c7af7f772d2a4c265bb955274771bc6299285496a

  • SHA512

    8a88b096d487bf9da9e24ce99c96cd09ec17d391a04f34f370be90f4cfd50e4d80e841eac9e79b9fd3a2472530df971164990890aa4e59a82d2d5ed222f9cd97

  • SSDEEP

    24576:/Y6HEiGC9DIT27p8yUdZSTOqITZMpc8jmFqYBn/p9HI:/Y6PG4DIzu3IV8KFfBnh9HI

Score
10/10
formbooke62sdiscoveryratspywarestealertrojan

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

e62s

Decoy

ellinksa.shop

uckyspinph.xyz

owdark.net

arriage-therapy-72241.bond

w7ijko4rv4p97b.top

heirbuzzwords.buzz

aspart.shop

ctivemail5-kagoya-com.info

shacertification9.shop

zitcd65k3.buzz

llkosoi.info

ru8.info

rhgtrdjdjykyetrdjftd.buzz

yschoollist.kiwi

oftfolio.online

rograma-de-almacen-2.online

oudoarms.top

mwquas.xyz

orjagaucha.website

nlinechat-mh.online

Targets

    • Target

      New Order #60-23095840024.exe

    • Size

      1.1MB

    • MD5

      64dbde73e410165a5e6566ed2b2282b6

    • SHA1

      7635298f794a9c7a68ac7675ca33574a765b8fb7

    • SHA256

      4d7b9bb02299bcc46d95f2df772d152d3ebb8445c04e6255040c61fb5ea46312

    • SHA512

      2bb58b47caca2be94fa934b34f6e0630a4281dc63ef908a11155a3986cfdd1316bc6ee93fe41e4486b2e2bc5153c8175b990653c9ef59de81af8ada7222d4b46

    • SSDEEP

      24576:KfmMv6Ckr7Mny5Qtz8SC9Z0TKqIrZopc8jiFiYpn/N9H0:K3v+7/5QtUYLIF8uFHpn19H0

    Score
    10/10
    formbooke62sdiscoveryratspywarestealertrojan

    • Formbook

      Formbook is a data stealing malware which is capable of stealing data.

      trojanspywarestealerformbook

    • Formbook payload

      rat

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.