General

  • Target

    577438041a38554d209b838173679d5d815639368aaceb835b18423081f26ca0.r00

  • Size

    499KB

  • Sample

    241214-egrv5atlcw

  • MD5

    0a768b9b6b38cd8ffbf58acf3e8f54b4

  • SHA1

    7df73cfc685a57076f90944b8a2bba54b7fdf6b3

  • SHA256

    577438041a38554d209b838173679d5d815639368aaceb835b18423081f26ca0

  • SHA512

    7923130523cc065bc08f50198fa2ab8c5bb70b36a295968f1e6ae9160b142752443328bef800f02beeb3a9e9a5a86c7171994881b18792794b8e482fb306bb33

  • SSDEEP

    12288:4UPVfPEAk0bBilcw/H9ZMqME2Zuf6t8Ef4DS:bXk0FilX1mqCQfVG

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

cl21

Decoy

0001.shop

earch-parttimejobs.today

are888.top

akanhaunthipped.shop

othing-heyu.xyz

cadvirsor.net

nclanalae.shop

lectric-cars-mexico.today

oxj-question.xyz

ersonalloanoffers.today

ersonalloans-fo54-fo37.click

verybody-ewfx.xyz

ercuremontauban.media

azilimdunyam.net

airs-clinicato.today

wiftsscend.click

ertainly-jbws.xyz

8xeng.app

damekadmitageable.cfd

ollapsedec.shop

Targets

    • Target

      invoice 2024665-1112.exe

    • Size

      848KB

    • MD5

      01558475f7d940f2fd80c0f2e4819169

    • SHA1

      56de61a2f8713d3f6711f85169bcf040f1cd6d5e

    • SHA256

      a4fa23e8786de563fd0eef88e32ea883672dc02c823f119ee8ffc82c0c0b6f9e

    • SHA512

      c6e26c54dfcd8eed8e864985c3b0cac8674667cf73b91377853744709ca7059e12268d2f8678b6b0b6579c71fe4a4ee6d3c006b9f60d7d65fbdcabdd0417ea34

    • SSDEEP

      12288:rLkcoxg7v3qnC11ErwIhh0F4qwUgUny5QLf99s6x2ABR7/ATY0kHgnC87og:ffmMv6Ckr7Mny5QLcMB5Mh7og

MITRE ATT&CK Enterprise v15

Tasks