formbook

General

Target

JaffaCakes118_dcb3bf8156dd16eaae3fa96ae979e6b52d6cdc877a94f793f24c764256e237ae
Size

185KB
Sample

241222-a6c12swqem
MD5

2205d308946753c790388e7390cf38ef
SHA1

df4207dfe626ac028f8fd1a43437738c38a1aef5
SHA256

dcb3bf8156dd16eaae3fa96ae979e6b52d6cdc877a94f793f24c764256e237ae
SHA512

abc41a3cf278649137b900db75de8a914b0d44a0a8b6451f7f51987ab1f9e346ed196fcc7b521ecd601b734701b8a0b0cdb76e0967b8e338b35630afcdcfcea4
SSDEEP

3072:+ieZVHG+8Cv5+/KcegTtHSN6pWVMB0AdWEJFT0iLa0ifqkUlwBwsVQW1:+zZVHG+8CBu8sSNSvCOWiDIX

Score

10^/10

Malware Config

Extracted

Family

formbook

Campaign

d0ad

Decoy

xZcu1T4gVLlododyl8ihkHs=

3/6XOfLQ7pOM8os6NQ==

N9zpjFUQKdfVU1V69VcB

O0JA95Nnfx0JeJI9pS1Kwpue

YSSrXAHYBpWGt4U1Rpxz/PL8mfcpa0A=

jTVkEQR5nXee

nqG1XaKGnI8CPtHq

upIavXRVcQQdxpd69VcB

8fsZ1DcSPHkAq0poRY8tRyY63jyWWjlP6Q==

Eurugn81UFfDZQAhPmlKwpue

YEVTC0MfVpVCX3SRLpZTqQ==

ypLGYBn3A3AFqzqj/XE=

yI2+a5g+T/jg43UaNw==

xtR+Jte1uw3z16paqRCqvnj+nAY=

46RM9UE6cpwZrj/4PpdUqQ==

qFRoCsuW3O9c+KN69VcB

gUbahykBUX03Wzqj/XE=

v1KEo3jeigSGsdA=

ADvt98Yx3iEPNQ==

mJmkTZuDjXzKg1R5XXw348svGe9Hv/V1

Targets

- Target
  
  JaffaCakes118_dcb3bf8156dd16eaae3fa96ae979e6b52d6cdc877a94f793f24c764256e237ae
- Size
  
  185KB
- MD5
  
  2205d308946753c790388e7390cf38ef
- SHA1
  
  df4207dfe626ac028f8fd1a43437738c38a1aef5
- SHA256
  
  dcb3bf8156dd16eaae3fa96ae979e6b52d6cdc877a94f793f24c764256e237ae
- SHA512
  
  abc41a3cf278649137b900db75de8a914b0d44a0a8b6451f7f51987ab1f9e346ed196fcc7b521ecd601b734701b8a0b0cdb76e0967b8e338b35630afcdcfcea4
- SSDEEP
  
  3072:+ieZVHG+8Cv5+/KcegTtHSN6pWVMB0AdWEJFT0iLa0ifqkUlwBwsVQW1:+zZVHG+8CBu8sSNSvCOWiDIX
Score

10^/10

formbook d0ad rat spyware stealer trojan discovery
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook family
  formbook
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook family

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2