formbook | a53603a8b3350c0e4dc9b4d507e60c7485790b7d2a14174ec0ad7b1614936e7b

General

Target

a53603a8b3350c0e4dc9b4d507e60c7485790b7d2a14174ec0ad7b1614936e7b
Size

188KB
Sample

241221-veh37stnbp
MD5

94d07a6b7600ab64b8c51d9d5408b130
SHA1

0c8d44dd83508efdeeb83ea750179f21ec942393
SHA256

a53603a8b3350c0e4dc9b4d507e60c7485790b7d2a14174ec0ad7b1614936e7b
SHA512

0c2440ca10cc70e46f3cc67a95d046232c5db5f3b770b280825a0f191a4576373fb4020a6ddc74ab4d878e58409c6aafed6f8aa625d38401aed4f61f873b2b47
SSDEEP

3072:SgOrk3EQrJHxZq3zbmQVKwA6S8l52lpUcLyeujGhgmVjMV:skszaiKB6S68lecsjcgY4V

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

t36t

Decoy

klinkspremiumwildlife.com

teto-store.com

minneapolistaxattorney.net

zgomc7.com

invest-nj.xyz

uinnou.com

addtr.online

hollydays.online

fearurself.com

balaaconstruction.com

myyacht.rentals

hstonme.xyz

51junt.com

sidagj.com

weelilfellas.com

mroadholdings.com

torontomillwork.com

gonks.shop

jupefeeds.online

drpmb.com

Targets

- Target
  
  a53603a8b3350c0e4dc9b4d507e60c7485790b7d2a14174ec0ad7b1614936e7b
- Size
  
  188KB
- MD5
  
  94d07a6b7600ab64b8c51d9d5408b130
- SHA1
  
  0c8d44dd83508efdeeb83ea750179f21ec942393
- SHA256
  
  a53603a8b3350c0e4dc9b4d507e60c7485790b7d2a14174ec0ad7b1614936e7b
- SHA512
  
  0c2440ca10cc70e46f3cc67a95d046232c5db5f3b770b280825a0f191a4576373fb4020a6ddc74ab4d878e58409c6aafed6f8aa625d38401aed4f61f873b2b47
- SSDEEP
  
  3072:SgOrk3EQrJHxZq3zbmQVKwA6S8l52lpUcLyeujGhgmVjMV:skszaiKB6S68lecsjcgY4V
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2