Extracted

• • Target

    New order number 240611-06SN.exe

  • Size

    564KB

  • MD5

    2f3877d0041db22af7371e723df92208

  • SHA1

    14453b14d3022d25e8a77b3d07ed86c262f605e3

  • SHA256

    f5192d0f7603e198e0b3098e9204ab40d11958a9bc27d8477db41cd5350b6242

  • SHA512

    8f03afed1eb4241a8be0659f99ef03d2a6bf24f374a8aefb97fa1b74b3b23746ba2da95f979d9602515e5337ec3f107c634cff89990dc58fdceb6a3485ff08e1

  • SSDEEP

    12288:L1RveBYTDV7JYrVM35ZtPwEBemDdQCKMgW/fHjuAxzP1b7cDoh9mKx:L1RWBY9JY5M35TPBemDRN/z9qohx

  Score

  10^/10

  formbookfh84discoveryratspywarestealertrojan

  • Formbook

    Formbook is a data stealing malware which is capable of stealing data.

    trojanspywarestealerformbook

  • Formbook family

    formbook

  • Formbook payload

    rat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2