General

  • Target

    7779dacfaf08385d377461ae4fe14557b8417c99247aac3c24eb9604c6b7f6e9

  • Size

    851KB

  • Sample

    241214-zgcrestmet

  • MD5

    bfe783df476aa09db0b6a7b202a4ce22

  • SHA1

    efd869b12f33a720c7894bd4683f652acd239399

  • SHA256

    7779dacfaf08385d377461ae4fe14557b8417c99247aac3c24eb9604c6b7f6e9

  • SHA512

    00f85a8ae9776cd129717c639f238be62ba563c62587eb22f995dadf431262ffe77f4b8a141292d4ab2eba048e50ed72df44834341ad47380b4b161db1cafb88

  • SSDEEP

    12288:rLkcoxg7v3qnC11ErwIhh0F4qwUgUny5QLZDhLweOBSHNDr9MI1Tzzy:ffmMv6Ckr7Mny5QLHLSaDr9/lzy

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

cl21

Decoy

0001.shop

earch-parttimejobs.today

are888.top

akanhaunthipped.shop

othing-heyu.xyz

cadvirsor.net

nclanalae.shop

lectric-cars-mexico.today

oxj-question.xyz

ersonalloanoffers.today

ersonalloans-fo54-fo37.click

verybody-ewfx.xyz

ercuremontauban.media

azilimdunyam.net

airs-clinicato.today

wiftsscend.click

ertainly-jbws.xyz

8xeng.app

damekadmitageable.cfd

ollapsedec.shop

Targets

    • Target

      7779dacfaf08385d377461ae4fe14557b8417c99247aac3c24eb9604c6b7f6e9

    • Size

      851KB

    • MD5

      bfe783df476aa09db0b6a7b202a4ce22

    • SHA1

      efd869b12f33a720c7894bd4683f652acd239399

    • SHA256

      7779dacfaf08385d377461ae4fe14557b8417c99247aac3c24eb9604c6b7f6e9

    • SHA512

      00f85a8ae9776cd129717c639f238be62ba563c62587eb22f995dadf431262ffe77f4b8a141292d4ab2eba048e50ed72df44834341ad47380b4b161db1cafb88

    • SSDEEP

      12288:rLkcoxg7v3qnC11ErwIhh0F4qwUgUny5QLZDhLweOBSHNDr9MI1Tzzy:ffmMv6Ckr7Mny5QLHLSaDr9/lzy

MITRE ATT&CK Enterprise v15

Tasks