General

  • Target

    2d1d21fefaccdde89b759234f18ed79ea0a8a631c15be4f93fe3106f7fe6abe6.exe

  • Size

    1.0MB

  • Sample

    241029-cl89vszqcw

  • MD5

    8128f92e759ef0399a73d001b78bf37e

  • SHA1

    64d435e7ca1c98ea6e1b5818d6cc8d0dad22db7d

  • SHA256

    2d1d21fefaccdde89b759234f18ed79ea0a8a631c15be4f93fe3106f7fe6abe6

  • SHA512

    5de12e936fc0be70ed771cb911e3cacec64a1ddd6e84124bd59b9a56117fd5eae655c79442cc33f971fe686ec8826484c196f04c5c6b85fb6864ac7b24faee30

  • SSDEEP

    24576:ffmMv6Ckr7Mny5QL2OTYtNaqimUy7RRtst35de:f3v+7/5QL2mTARReR5de

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

n04s

Decoy

imberstimedtinter.cfd

ttfr44solutionschesapeake.pro

kkas.xyz

sk-frby.xyz

ptowing.net

jzimq-community.xyz

ressoncrookencruller.cfd

amedana.click

ravamarketing.tech

udfa-speech.xyz

ose-bdbzsg.xyz

alsiuuarsiau.xyz

fgiopa.xyz

15501.pro

tart-ewlon.xyz

kjjf-company.xyz

araldschauer.shop

wet25.vip

armostfavorgaivn.cfd

ompa77.click

Targets

    • Target

      2d1d21fefaccdde89b759234f18ed79ea0a8a631c15be4f93fe3106f7fe6abe6.exe

    • Size

      1.0MB

    • MD5

      8128f92e759ef0399a73d001b78bf37e

    • SHA1

      64d435e7ca1c98ea6e1b5818d6cc8d0dad22db7d

    • SHA256

      2d1d21fefaccdde89b759234f18ed79ea0a8a631c15be4f93fe3106f7fe6abe6

    • SHA512

      5de12e936fc0be70ed771cb911e3cacec64a1ddd6e84124bd59b9a56117fd5eae655c79442cc33f971fe686ec8826484c196f04c5c6b85fb6864ac7b24faee30

    • SSDEEP

      24576:ffmMv6Ckr7Mny5QL2OTYtNaqimUy7RRtst35de:f3v+7/5QL2mTARReR5de

MITRE ATT&CK Enterprise v15

Tasks