General

  • Target

    SecuriteInfo.com.W32.MSIL_Agent.IVS.gen.Eldorado.20843.16872.exe

  • Size

    774KB

  • Sample

    241108-h54rdazrcr

  • MD5

    c99b273484801b23ec0a037347cc63d4

  • SHA1

    7724035bdc210a16142812a3e58a24f46b533478

  • SHA256

    d9dc8cf4f0c34bff044cc82267d7480d8c565c5299f1e5c35547f7eb866fc49b

  • SHA512

    4876038789c002ed24bc3377e71437bdda76adcf3ad0b207309a2b7650dde4a27bf5cf2b59762412c4b23e06f2a83978f9fa67e6ecb3c38bffd613f09d89e2cb

  • SSDEEP

    24576:yU2prkC5LF9wQ8q57ZcBASdzJ0WKD2Erk:lSgwLj5576qSdl0WKSU

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

dr14

Decoy

ypewriter.pro

conoficina.shop

etrules.net

bwuc-ball.xyz

obis.xyz

tpbuncistoto.xyz

lhakikas.net

long-ybzxgm.xyz

ray-east.xyz

hild-rbfij.xyz

imself-kyac.xyz

ftuu-government.xyz

om-tracksi.top

olicy-yzipy.xyz

ntalaxlesbabbool.cfd

ingleyou.top

ieryfiertzframing.cfd

pon-nacgrz.xyz

aomei515.top

alzgroup.net

Targets

    • Target

      SecuriteInfo.com.W32.MSIL_Agent.IVS.gen.Eldorado.20843.16872.exe

    • Size

      774KB

    • MD5

      c99b273484801b23ec0a037347cc63d4

    • SHA1

      7724035bdc210a16142812a3e58a24f46b533478

    • SHA256

      d9dc8cf4f0c34bff044cc82267d7480d8c565c5299f1e5c35547f7eb866fc49b

    • SHA512

      4876038789c002ed24bc3377e71437bdda76adcf3ad0b207309a2b7650dde4a27bf5cf2b59762412c4b23e06f2a83978f9fa67e6ecb3c38bffd613f09d89e2cb

    • SSDEEP

      24576:yU2prkC5LF9wQ8q57ZcBASdzJ0WKD2Erk:lSgwLj5576qSdl0WKSU

MITRE ATT&CK Enterprise v15

Tasks