formbook | 8d5305302fd6f59faa7ed5eafc6567bb6f6982979ebce1d4b3af8636b190ffd4

General

Target

8d5305302fd6f59faa7ed5eafc6567bb6f6982979ebce1d4b3af8636b190ffd4
Size

188KB
Sample

241221-vh914atlht
MD5

4e6a4afa668ae74bdd99a750fe9e3cf0
SHA1

90bf64614cf0dba11de65c76fc850ed8906fa778
SHA256

8d5305302fd6f59faa7ed5eafc6567bb6f6982979ebce1d4b3af8636b190ffd4
SHA512

c46ee87ccafb18b8397c4442b117ae96f748e0eafee77c97b3acfcc7cabac47746149e82cf6dbfbfac28009f08ce3f696ae5e50728ce70433eb81f12dafab839
SSDEEP

3072:fFWPkvmvilna3bsVuDtKFqWV30baD7I+9QaE4u09nfdzpFF2+Zk+:BFcb8ctKFqWxrk+9QP4u09nfdHM

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

g47e

Decoy

73346.top

matureshift.shop

bohnergroup.com

snehq.store

7pijj.com

wineshopsonline.com

reactivecreditagric.mom

aganderson.net

1800302.vip

942565.com

phonetography.club

garansugar.com

pinetree.email

34245.top

thejoy.run

pointvirtualrx.com

pqz.info

paddleboards.shop

vvapro.info

8peakssustainablelab.com

Targets

- Target
  
  8d5305302fd6f59faa7ed5eafc6567bb6f6982979ebce1d4b3af8636b190ffd4
- Size
  
  188KB
- MD5
  
  4e6a4afa668ae74bdd99a750fe9e3cf0
- SHA1
  
  90bf64614cf0dba11de65c76fc850ed8906fa778
- SHA256
  
  8d5305302fd6f59faa7ed5eafc6567bb6f6982979ebce1d4b3af8636b190ffd4
- SHA512
  
  c46ee87ccafb18b8397c4442b117ae96f748e0eafee77c97b3acfcc7cabac47746149e82cf6dbfbfac28009f08ce3f696ae5e50728ce70433eb81f12dafab839
- SSDEEP
  
  3072:fFWPkvmvilna3bsVuDtKFqWV30baD7I+9QaE4u09nfdzpFF2+Zk+:BFcb8ctKFqWxrk+9QP4u09nfdHM
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2