General

  • Target

    16fcfaa35b847c585a964a7e862e7321e71ec098eaf6d6a33721cf113ddb159f

  • Size

    1.1MB

  • Sample

    241209-yl46ssypfy

  • MD5

    dd8249ab4c9e8a8e4aac3290a2fbad2a

  • SHA1

    75f7fd605e1d035e04649a3d865ef8d8ca713e63

  • SHA256

    16fcfaa35b847c585a964a7e862e7321e71ec098eaf6d6a33721cf113ddb159f

  • SHA512

    304a81717dc609b924b921186c43a50f257502d6729b196f8e7341d324e56267e58a3a055b2b279ca269060b020022f154b86555f60666a9a6f8cc3add38925b

  • SSDEEP

    24576:bu6J33O0c+JY5UZ+XC0kGso6FaduI4+K0vJWY:Vu0c++OCvkGs9Faduv108Y

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

at22

Decoy

etween-us.online

sphaleia.net

ental-implants-78350.bond

q4a.lat

commerce-97292.bond

linds-curtains-38811.bond

gyptevoyages.net

landofigueroa-abogados.net

cuitis.xyz

hantom.city

yzk.online

afikabmedan.store

ome-remodeling-67289.bond

ebpage-klzdxrhnazi.shop

eject.lol

rismart.xyz

nfluencer-marketing-72407.bond

ksolotl.xyz

ebsbayrntilrmizin93.xyz

pps-75399.bond

Targets

    • Target

      16fcfaa35b847c585a964a7e862e7321e71ec098eaf6d6a33721cf113ddb159f

    • Size

      1.1MB

    • MD5

      dd8249ab4c9e8a8e4aac3290a2fbad2a

    • SHA1

      75f7fd605e1d035e04649a3d865ef8d8ca713e63

    • SHA256

      16fcfaa35b847c585a964a7e862e7321e71ec098eaf6d6a33721cf113ddb159f

    • SHA512

      304a81717dc609b924b921186c43a50f257502d6729b196f8e7341d324e56267e58a3a055b2b279ca269060b020022f154b86555f60666a9a6f8cc3add38925b

    • SSDEEP

      24576:bu6J33O0c+JY5UZ+XC0kGso6FaduI4+K0vJWY:Vu0c++OCvkGs9Faduv108Y

MITRE ATT&CK Enterprise v15

Tasks