formbook | 2646aeaf3493dbbebce1da0c2925251329ef17302c856b5a817f111e2c4541a6

General

Target

JaffaCakes118_2646aeaf3493dbbebce1da0c2925251329ef17302c856b5a817f111e2c4541a6
Size

188KB
Sample

241222-agj33avnbs
MD5

637215705b675ab8085537c2b48186d4
SHA1

6db16c716b58c1988e74046add8707ccd9f94f17
SHA256

2646aeaf3493dbbebce1da0c2925251329ef17302c856b5a817f111e2c4541a6
SHA512

95f72a0e43eddbda7e1f28f35b040936e0aa641df177ce506ff6547c33fd1e4c6bb87f75ed85232a60ab3ebd6e7315283dd6b321a21ef5aab1e557c10807eb06
SSDEEP

3072:1wm56kFkOEQ3+E13JDQjVZq5Q/3Rdlz8skm/x3Lp57mp2j:oqZJsvq5Q/3Rdaskm5bb7mU

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

sn31

Decoy

matsuomatsuo.com

104wn.com

bolacorner.com

dawonderer.com

yourpamlano.xyz

mtzmx.icu

lepakzaparket.com

barmagli.com

danta.ltd

marumaru240.com

people-centeredhr.com

test-brew-inc.com

clairvoyantbusinesscoach.com

aforeignexchangeblog.com

erentekbilisim.com

gangqinqu123.net

defiguaranteebonds.com

thegioigaubong97.site

vaoiwin.info

vcwholeness.com

Targets

- Target
  
  JaffaCakes118_2646aeaf3493dbbebce1da0c2925251329ef17302c856b5a817f111e2c4541a6
- Size
  
  188KB
- MD5
  
  637215705b675ab8085537c2b48186d4
- SHA1
  
  6db16c716b58c1988e74046add8707ccd9f94f17
- SHA256
  
  2646aeaf3493dbbebce1da0c2925251329ef17302c856b5a817f111e2c4541a6
- SHA512
  
  95f72a0e43eddbda7e1f28f35b040936e0aa641df177ce506ff6547c33fd1e4c6bb87f75ed85232a60ab3ebd6e7315283dd6b321a21ef5aab1e557c10807eb06
- SSDEEP
  
  3072:1wm56kFkOEQ3+E13JDQjVZq5Q/3Rdlz8skm/x3Lp57mp2j:oqZJsvq5Q/3Rdaskm5bb7mU
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2