General

  • Target

    GenesisRMSPrivateLimitedNovember2024pdf.exe

  • Size

    1.0MB

  • Sample

    241126-mc7d1stkej

  • MD5

    a03815195e40a8caf9e0da80eccb9240

  • SHA1

    f770dbb9f49ad2f03955a2c5a8c70373652d2ba9

  • SHA256

    1477618f7a47c1e6cef99ff4626f541de642a01ec9219290d3a92546abc21c9e

  • SHA512

    d62156ed630fee3830832151f42adc6f9ae9fbc48497cf3a54a70759121a583168bf60db85ae50d3964183a72eacd1eea4c187b82c2ba2a67cee675332fa997f

  • SSDEEP

    24576:fAHnh+eWsN3skA4RV1Hom2KXMmHaCH6m3kVjM4615:Ch+ZkldoPK8YaC53kZY

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

ma28

Decoy

orth.monster

5970.pizza

oinayangi.net

usiness-funding-48965.bond

uttere.buzz

raumainformed.xyz

amewith.today

hetangosalon.net

irewoodprice168.shop

commerce-96305.bond

3107.loan

uohan.tech

agakaw.website

fricaduka.store

ecga.info

arehouse-inventory-27582.bond

itchen-design-87997.bond

eishahousesteaksushi.shop

liopew.xyz

4769.pizza

Targets

    • Target

      GenesisRMSPrivateLimitedNovember2024pdf.exe

    • Size

      1.0MB

    • MD5

      a03815195e40a8caf9e0da80eccb9240

    • SHA1

      f770dbb9f49ad2f03955a2c5a8c70373652d2ba9

    • SHA256

      1477618f7a47c1e6cef99ff4626f541de642a01ec9219290d3a92546abc21c9e

    • SHA512

      d62156ed630fee3830832151f42adc6f9ae9fbc48497cf3a54a70759121a583168bf60db85ae50d3964183a72eacd1eea4c187b82c2ba2a67cee675332fa997f

    • SSDEEP

      24576:fAHnh+eWsN3skA4RV1Hom2KXMmHaCH6m3kVjM4615:Ch+ZkldoPK8YaC53kZY

MITRE ATT&CK Enterprise v15

Tasks