General

  • Target

    308d2312635d080380f1239ea08a9c7fd06ec2329e06dcb45fe429a512829e27.rar

  • Size

    496KB

  • Sample

    241212-cnq63awrht

  • MD5

    4581bed8884de7985fe6ad409044dbc2

  • SHA1

    a13ab11736ca90855e4d62d5c3e87df3ac23afba

  • SHA256

    308d2312635d080380f1239ea08a9c7fd06ec2329e06dcb45fe429a512829e27

  • SHA512

    4a4fcd809cfeeaaeb35af8afb6eebf8a59cc21e68ad7fd32f651526a10ceeddf453d87b8fc8569f3778e4b246a3c15acfeca2c6aeed67c049e853abd2ce43977

  • SSDEEP

    12288:SUPVfPEAk0bBilcw/H9ZomE5/F0/1fqcdQczE:FXk0FilX1ameNYU/YE

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

cl21

Decoy

0001.shop

earch-parttimejobs.today

are888.top

akanhaunthipped.shop

othing-heyu.xyz

cadvirsor.net

nclanalae.shop

lectric-cars-mexico.today

oxj-question.xyz

ersonalloanoffers.today

ersonalloans-fo54-fo37.click

verybody-ewfx.xyz

ercuremontauban.media

azilimdunyam.net

airs-clinicato.today

wiftsscend.click

ertainly-jbws.xyz

8xeng.app

damekadmitageable.cfd

ollapsedec.shop

Targets

    • Target

      invddd.exe

    • Size

      845KB

    • MD5

      52fc6852320639e89579861ebe66696f

    • SHA1

      eb36a28642f5b689f62048724423aec4c1eb0ba6

    • SHA256

      5f0f26b3d51812df461e2c368c9a373099f54b62640564e7b06881a5d25a823b

    • SHA512

      75cfe9889d81df0152d48c9a5a3b6b9c1bb608fb27bb98198abd57334d7d36ce437e6d2701644ec179058abec558e41e2d079cf3251efb45ec7104e6869d1b3d

    • SSDEEP

      12288:rLkcoxg7v3qnC11ErwIhh0F4qwUgUny5QLcl7YLGm86s10Y+H5N:ffmMv6Ckr7Mny5QLc9YzYCN

MITRE ATT&CK Enterprise v15

Tasks