General

  • Target

    851eca040f78d215df7b272da1af4a5438c94fc5e9c7685db00ef25f2954bb99.exe

  • Size

    569KB

  • Sample

    241123-yal6vaypdn

  • MD5

    d564817bb785c9b4679b720f44372b78

  • SHA1

    a5ad3a1a6213ec64d6047d2d28b569d6a3c8b2b3

  • SHA256

    851eca040f78d215df7b272da1af4a5438c94fc5e9c7685db00ef25f2954bb99

  • SHA512

    4d47376a1aecbd20a5bb97a04e9486f61e4cbcf627e882dbd26890ebc92b2d042e31f3fcc70d294cadf05a0388538dc9a84d6edf243a53625241891e1b1e1bd3

  • SSDEEP

    12288:46J/ZsDPDXWsjZ4s2JQUCM2SuGNmYSTeqf:46pZs7DmsispUCM9V9CeW

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

d7ln

Decoy

bulut-imza.com

gotastebuds.com

shutupmags.com

clocksport.com

toweryachtcounsel.com

kingcopier.com

pluspersona.com

inchallahe.com

unclonedconsulting.com

ccdt168.com

tonyzheng.xyz

voiceoftheepeople.com

cicapital.xyz

offxpro.com

loyatiproductions.com

makemebuystuff.com

incuba8labs.com

remparka.com

newstft.com

bgame.pro

Targets

    • Target

      851eca040f78d215df7b272da1af4a5438c94fc5e9c7685db00ef25f2954bb99.exe

    • Size

      569KB

    • MD5

      d564817bb785c9b4679b720f44372b78

    • SHA1

      a5ad3a1a6213ec64d6047d2d28b569d6a3c8b2b3

    • SHA256

      851eca040f78d215df7b272da1af4a5438c94fc5e9c7685db00ef25f2954bb99

    • SHA512

      4d47376a1aecbd20a5bb97a04e9486f61e4cbcf627e882dbd26890ebc92b2d042e31f3fcc70d294cadf05a0388538dc9a84d6edf243a53625241891e1b1e1bd3

    • SSDEEP

      12288:46J/ZsDPDXWsjZ4s2JQUCM2SuGNmYSTeqf:46pZs7DmsispUCM9V9CeW

MITRE ATT&CK Enterprise v15

Tasks