General

  • Target

    a4fa23e8786de563fd0eef88e32ea883672dc02c823f119ee8ffc82c0c0b6f9e.exe

  • Size

    848KB

  • Sample

    241214-pjbl2a1qdw

  • MD5

    01558475f7d940f2fd80c0f2e4819169

  • SHA1

    56de61a2f8713d3f6711f85169bcf040f1cd6d5e

  • SHA256

    a4fa23e8786de563fd0eef88e32ea883672dc02c823f119ee8ffc82c0c0b6f9e

  • SHA512

    c6e26c54dfcd8eed8e864985c3b0cac8674667cf73b91377853744709ca7059e12268d2f8678b6b0b6579c71fe4a4ee6d3c006b9f60d7d65fbdcabdd0417ea34

  • SSDEEP

    12288:rLkcoxg7v3qnC11ErwIhh0F4qwUgUny5QLf99s6x2ABR7/ATY0kHgnC87og:ffmMv6Ckr7Mny5QLcMB5Mh7og

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

cl21

Decoy

0001.shop

earch-parttimejobs.today

are888.top

akanhaunthipped.shop

othing-heyu.xyz

cadvirsor.net

nclanalae.shop

lectric-cars-mexico.today

oxj-question.xyz

ersonalloanoffers.today

ersonalloans-fo54-fo37.click

verybody-ewfx.xyz

ercuremontauban.media

azilimdunyam.net

airs-clinicato.today

wiftsscend.click

ertainly-jbws.xyz

8xeng.app

damekadmitageable.cfd

ollapsedec.shop

Targets

    • Target

      a4fa23e8786de563fd0eef88e32ea883672dc02c823f119ee8ffc82c0c0b6f9e.exe

    • Size

      848KB

    • MD5

      01558475f7d940f2fd80c0f2e4819169

    • SHA1

      56de61a2f8713d3f6711f85169bcf040f1cd6d5e

    • SHA256

      a4fa23e8786de563fd0eef88e32ea883672dc02c823f119ee8ffc82c0c0b6f9e

    • SHA512

      c6e26c54dfcd8eed8e864985c3b0cac8674667cf73b91377853744709ca7059e12268d2f8678b6b0b6579c71fe4a4ee6d3c006b9f60d7d65fbdcabdd0417ea34

    • SSDEEP

      12288:rLkcoxg7v3qnC11ErwIhh0F4qwUgUny5QLf99s6x2ABR7/ATY0kHgnC87og:ffmMv6Ckr7Mny5QLcMB5Mh7og

MITRE ATT&CK Enterprise v15

Tasks