Overview

overview

10

Static

static

10

375d1a9b98...30.exe

windows7-x64

1

375d1a9b98...30.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ee54c4099c869ef598c80c983a57c6b204185ae03bc32a7bc752a4482b0f2df9

  • Size

    138KB

  • Sample

    241221-vq21fstnhs

  • MD5

    97fa6ba801c8a0e84d314c7e29bbc4be

  • SHA1

    dd5d73c2e13dba3f5481ff216b265ef9b7f4dd4c

  • SHA256

    ee54c4099c869ef598c80c983a57c6b204185ae03bc32a7bc752a4482b0f2df9

  • SHA512

    03427b78c7f0c0186f417481c2ab950191c0f46ea2ebf1dc05c9bd1c1efdce4ee60ee4de4c0fcb003210b11c07f6b5117542273e46dfec17c2e25e6071037644

  • SSDEEP

    3072:wAvsiE2iuynrO+JU9rq0ktP1MGupSWE/FZkV:wAvXp6rg9rq0k8GupSb/zW

Score
10/10
formbookfs93discoveryrat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

fs93

Decoy

talesofterrorhaunt.com

adpir.com

federalexams.online

ontop88.one

sasquatchscreenprinting.com

thegoonstate.com

cuetik.com

334098.com

tronzolacero.xyz

fashion-therapy.co.uk

stationdjradio.com

28530wlakeviewcrt.info

hastingsreptiles.co.uk

iwabrisibolgamonica.my.id

propertymanagementsanjoseca.com

vrtic-zepce.com

jthme.com

nha-cai-v9bet.com

ikx2.com

yeslon.xyz

Targets

    • Target

      375d1a9b98531aaaf0d05ad0c23f5ddca52ec2bbd4d2abeeeab58d03f8d8b630

    • Size

      185KB

    • MD5

      f57b8f73c29253df1f3626a77c4f1050

    • SHA1

      efd61f0fa32705f43b2c0868ad2db5be14b2ae78

    • SHA256

      375d1a9b98531aaaf0d05ad0c23f5ddca52ec2bbd4d2abeeeab58d03f8d8b630

    • SHA512

      ea08e4c014a3c9874f675bedc32c9c2d177f455c3df416230f30752017c0d8b44f31e609314f8f00740daedd4150c0b459fa233820235d5f5b2043d724f7f95a

    • SSDEEP

      3072:C6fjkTNelMn+9Q3ewWmcf27fpnzBhg57/OecSJQtrUypyTgUGIY1acE:Lbee3m97fpnNUGehJ2UIX/IiaB

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks