General

  • Target

    5cc57d4f96ab5a09197abb5d73e10104e0343cabbe3073ed640299b6b9c7e6ee.exe

  • Size

    707KB

  • Sample

    241121-b91f7aslhp

  • MD5

    059cd028f0855871593e963697a27783

  • SHA1

    7f7cc06bc0e50e62b08f05e73766d16cc8ce6996

  • SHA256

    5cc57d4f96ab5a09197abb5d73e10104e0343cabbe3073ed640299b6b9c7e6ee

  • SHA512

    0ac33853bc0bab21c54fb9180c0e0ef0fbabb6db0bbe19b286667f93ba03f2a4e2ef9ca524c33da2fd9995ef1ea69ffff93e423abd340a69df59ac2a4d9417b3

  • SSDEEP

    12288:FPIbw8eG5KB21407XO6mfhk3EfJbFZEHkRO6i8kzXqJFTPXWBJG5vaQAyP:qbw8eG56214WYHEHY18zXqToS

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

mo9n

Decoy

circuit-town.com

stock-high.xyz

barlindelivery.com

littletoucans.com

bright-tailor.com

firsthandcares.com

ecompropeller.com

circuitoalberghiero.net

creative-egyptps.com

bitracks56.com

douhonghong.com

fingertipcollection.com

happy-bihada.space

blockchainairdropreward.com

xn--reljame-jwa.com

polloycarnesdelivery.com

d22.group

eslamshahrservice.com

vanzing.com

juzide.com

Targets

    • Target

      5cc57d4f96ab5a09197abb5d73e10104e0343cabbe3073ed640299b6b9c7e6ee.exe

    • Size

      707KB

    • MD5

      059cd028f0855871593e963697a27783

    • SHA1

      7f7cc06bc0e50e62b08f05e73766d16cc8ce6996

    • SHA256

      5cc57d4f96ab5a09197abb5d73e10104e0343cabbe3073ed640299b6b9c7e6ee

    • SHA512

      0ac33853bc0bab21c54fb9180c0e0ef0fbabb6db0bbe19b286667f93ba03f2a4e2ef9ca524c33da2fd9995ef1ea69ffff93e423abd340a69df59ac2a4d9417b3

    • SSDEEP

      12288:FPIbw8eG5KB21407XO6mfhk3EfJbFZEHkRO6i8kzXqJFTPXWBJG5vaQAyP:qbw8eG56214WYHEHY18zXqToS

MITRE ATT&CK Enterprise v15

Tasks