formbook | 58eebaf4139691625885e85925b61d6fcbefa05e1541c75d33b76118d75ecea0

General

Target

2292-3-0x0000000000400000-0x000000000042F000-memory.dmp
Size

188KB
Sample

241111-mzb7dsxpav
MD5

a4b6354fafdfac088e8d5bb5deed32e8
SHA1

b5e5fa3e4b6c6c9b4bf45d24d753a057e9d6afe7
SHA256

58eebaf4139691625885e85925b61d6fcbefa05e1541c75d33b76118d75ecea0
SHA512

419a126feafff3c7854720bea992888a404da1dd821e734f9f14c5772073e4836edfd74926ab51345f47a0fda9cb9ceab14c3d0580a7af0a7d168700730c8929
SSDEEP

3072:1Wm49FEF9tGkOlw/y5+SOrc6gOUOILqEuAQEgcZojVht26:3XB/ychY6gOUOqcnv

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

cl21

Decoy

0001.shop

earch-parttimejobs.today

are888.top

akanhaunthipped.shop

othing-heyu.xyz

cadvirsor.net

nclanalae.shop

lectric-cars-mexico.today

oxj-question.xyz

ersonalloanoffers.today

ersonalloans-fo54-fo37.click

verybody-ewfx.xyz

ercuremontauban.media

azilimdunyam.net

airs-clinicato.today

wiftsscend.click

ertainly-jbws.xyz

8xeng.app

damekadmitageable.cfd

ollapsedec.shop

Targets

- Target
  
  2292-3-0x0000000000400000-0x000000000042F000-memory.dmp
- Size
  
  188KB
- MD5
  
  a4b6354fafdfac088e8d5bb5deed32e8
- SHA1
  
  b5e5fa3e4b6c6c9b4bf45d24d753a057e9d6afe7
- SHA256
  
  58eebaf4139691625885e85925b61d6fcbefa05e1541c75d33b76118d75ecea0
- SHA512
  
  419a126feafff3c7854720bea992888a404da1dd821e734f9f14c5772073e4836edfd74926ab51345f47a0fda9cb9ceab14c3d0580a7af0a7d168700730c8929
- SSDEEP
  
  3072:1Wm49FEF9tGkOlw/y5+SOrc6gOUOILqEuAQEgcZojVht26:3XB/ychY6gOUOqcnv
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2