General

  • Target

    2932-11-0x0000000000400000-0x000000000042F000-memory.dmp

  • Size

    188KB

  • Sample

    241029-jyrc5sxfrq

  • MD5

    c0a0b2e33a58ac4f0416046069c943bd

  • SHA1

    7016e1472ed1b8622743436bf19d2f304d8319bb

  • SHA256

    01e7cf890c4156115df1f901fe831278da1ad6ed11bd896fb3c1411aeb32d1e3

  • SHA512

    2761cdf8f786d64f94ff3f9dd5f53187714c6a65cb578ea10177afa7ed4761c9352ef406750fa1147592c05ed0701d824ba258308529f9e2355f2b714027e419

  • SSDEEP

    3072:aOkPFlH2+A8c5C/CDHZjdPOWaVQririIUK7LV8HL4piOj/hhvzD2p:GQTBDHlnaVQrPXK7LV8HL4HDn2p

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

cd36

Decoy

hongrobert.top

msurmis.online

tormdamageroof.net

riglashenie-svadby.store

otorcycle-loans-84331.bond

ouriptv.info

eportingcfo.top

2019.vip

ysphoto.online

hrivegorevx.info

350yhc.top

mwakop.xyz

antan4d-amp.xyz

pc-marketing-95267.bond

cuway.tours

inshiaward.top

akuzainu.fun

scenario.live

arrowlaboratorio.shop

nline-gaming-13926.bond

Targets

    • Target

      2932-11-0x0000000000400000-0x000000000042F000-memory.dmp

    • Size

      188KB

    • MD5

      c0a0b2e33a58ac4f0416046069c943bd

    • SHA1

      7016e1472ed1b8622743436bf19d2f304d8319bb

    • SHA256

      01e7cf890c4156115df1f901fe831278da1ad6ed11bd896fb3c1411aeb32d1e3

    • SHA512

      2761cdf8f786d64f94ff3f9dd5f53187714c6a65cb578ea10177afa7ed4761c9352ef406750fa1147592c05ed0701d824ba258308529f9e2355f2b714027e419

    • SSDEEP

      3072:aOkPFlH2+A8c5C/CDHZjdPOWaVQririIUK7LV8HL4piOj/hhvzD2p:GQTBDHlnaVQrPXK7LV8HL4HDn2p

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks