General

  • Target

    bfb4b96460ce25a3a585f3780f8ab6c0db4d31dccfe614491876332c028d4328.exe

  • Size

    586KB

  • Sample

    241203-rj8ymsymgt

  • MD5

    0d02d3493e4b372c0a1e3e9db2ea8577

  • SHA1

    5e4f4684b03d984611ddfbd2a28e6cdfadb731cd

  • SHA256

    bfb4b96460ce25a3a585f3780f8ab6c0db4d31dccfe614491876332c028d4328

  • SHA512

    036e517d4d0fc8aca476de0f96e33520a8ad6801a7294341aeb3b4fece87fe6e39707ba306205743f4ca8ad895c4ab8c42a7326fee0c36af5800d4e67b77d8fe

  • SSDEEP

    12288:h+MlmjxCKoK9oLK9YIzq3Z2EaWmPwe13zAVIEsX3BWqp4P:hKFCD+9YIzq3Zja5F138eU04P

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

cu29

Decoy

qidr.shop

usinessaviationconsulting.net

68716329.xyz

nd-los.net

ealthironcladguarantee.shop

oftware-download-69354.bond

48372305.top

omeownershub.top

mall-chilli.top

ajakgoid.online

ire-changer-53482.bond

rugsrx.shop

oyang123.info

azino-forum-pro.online

817715.rest

layman.vip

eb777.club

ovatonica.net

urgaslotvip.website

inn-paaaa.buzz

Targets

    • Target

      bfb4b96460ce25a3a585f3780f8ab6c0db4d31dccfe614491876332c028d4328.exe

    • Size

      586KB

    • MD5

      0d02d3493e4b372c0a1e3e9db2ea8577

    • SHA1

      5e4f4684b03d984611ddfbd2a28e6cdfadb731cd

    • SHA256

      bfb4b96460ce25a3a585f3780f8ab6c0db4d31dccfe614491876332c028d4328

    • SHA512

      036e517d4d0fc8aca476de0f96e33520a8ad6801a7294341aeb3b4fece87fe6e39707ba306205743f4ca8ad895c4ab8c42a7326fee0c36af5800d4e67b77d8fe

    • SSDEEP

      12288:h+MlmjxCKoK9oLK9YIzq3Z2EaWmPwe13zAVIEsX3BWqp4P:hKFCD+9YIzq3Zja5F138eU04P

MITRE ATT&CK Enterprise v15

Tasks