formbook | 037f46740af8c04cabdcf7951a1567cffe908bcf9768e6acd670aa45c884bf8b

General

Target

037f46740af8c04cabdcf7951a1567cffe908bcf9768e6acd670aa45c884bf8b
Size

181KB
Sample

241201-r3br9atng1
MD5

4f96d99d3ac8706774f5485e9198a6f6
SHA1

fec7b1e770a3c11ac170d93fc7e408de20160ba1
SHA256

037f46740af8c04cabdcf7951a1567cffe908bcf9768e6acd670aa45c884bf8b
SHA512

295efc29d2c84f52ce27f4303878264aa0e7df0adbb426c3a6b10774f5e48ec99d450120d087cd22a8ce6672dabbca5f9976ba2766e6ae4fff29dc6687fc8644
SSDEEP

3072:XMuck0YCUzDPZ2JezlZP56s8O2CZ/7kl6z2p8zA8wxQkxIz+jk:8+QUr56s8O2WO6zEzQkxrj

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

cz30

Decoy

valeriepuma.com

rentyourbag.com

unglesbyessure.com

ahzmjy.site

taazdelights.online

conexoesnews.com

istprimeway.com

elwf4tlu.shop

661.support

fournaisehk.com

glechiu.xyz

2r2pv2.shop

902523.rip

bruggicapy.com

westmobileautodeatailers.online

muaad.co

gridxsens.com

victoronedesigns.com

tecexpressbr.com

crea4net.com

Targets

- Target
  
  037f46740af8c04cabdcf7951a1567cffe908bcf9768e6acd670aa45c884bf8b
- Size
  
  181KB
- MD5
  
  4f96d99d3ac8706774f5485e9198a6f6
- SHA1
  
  fec7b1e770a3c11ac170d93fc7e408de20160ba1
- SHA256
  
  037f46740af8c04cabdcf7951a1567cffe908bcf9768e6acd670aa45c884bf8b
- SHA512
  
  295efc29d2c84f52ce27f4303878264aa0e7df0adbb426c3a6b10774f5e48ec99d450120d087cd22a8ce6672dabbca5f9976ba2766e6ae4fff29dc6687fc8644
- SSDEEP
  
  3072:XMuck0YCUzDPZ2JezlZP56s8O2CZ/7kl6z2p8zA8wxQkxIz+jk:8+QUr56s8O2WO6zEzQkxrj
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2