formbook

General

Target

975f67ccf96e69099d84b63c56ab1f2d_JaffaCakes118
Size

796KB
Sample

241124-1mt4bsxkek
MD5

975f67ccf96e69099d84b63c56ab1f2d
SHA1

04428d3873170421b0a1efd821ec3b7366a28119
SHA256

b70102d1cdd3822f097da98e2068b162590de84338edc577ba7c54953b55dfe2
SHA512

b43857851aeab0901b521892b691d414e366ef127f71dff39c53dabffe7a294a1058cd8027b02651897bb400bc4071cbfe09cf7a9025c301c6bd54ac896b4ef6
SSDEEP

12288:1y5i2yxqFCYt8/vLRDDP8rZit6qeZaGRIDuTA:1yYqFCYtozRDD6ZM7f+o

Score

10^/10

formbook ap discovery rat spyware stealer trojan

Malware Config

Extracted

Family

formbook

Version

3.9

Campaign

ap

Decoy

runway27band.com

nogofarm.com

phfrontpage.info

apolloidt.com

superiorselfstoragecny.com

sharebelieves.com

schwabejapan.com

myicro.digital

quesodeflor.com

ar2make.com

lestudio12.com

thefilix.com

milfdating365.com

urnbet.com

fina.ltd

victoriaprrime.com

supporttechnique.directory

island-car-wash.net

devteamsix.com

zhenyusafety.com

Targets

- Target
  
  975f67ccf96e69099d84b63c56ab1f2d_JaffaCakes118
- Size
  
  796KB
- MD5
  
  975f67ccf96e69099d84b63c56ab1f2d
- SHA1
  
  04428d3873170421b0a1efd821ec3b7366a28119
- SHA256
  
  b70102d1cdd3822f097da98e2068b162590de84338edc577ba7c54953b55dfe2
- SHA512
  
  b43857851aeab0901b521892b691d414e366ef127f71dff39c53dabffe7a294a1058cd8027b02651897bb400bc4071cbfe09cf7a9025c301c6bd54ac896b4ef6
- SSDEEP
  
  12288:1y5i2yxqFCYt8/vLRDDP8rZit6qeZaGRIDuTA:1yYqFCYtozRDD6ZM7f+o
Score

10^/10

formbook ap discovery rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook family
  formbook
- Formbook payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook family

Formbook payload

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2