formbook | 08698dc796dd953a3468d93045f113358aff328472ba0c576f52ed87c3915ed4

General

Target

JaffaCakes118_08698dc796dd953a3468d93045f113358aff328472ba0c576f52ed87c3915ed4
Size

188KB
Sample

241222-gfgd4swnel
MD5

b14a79e64e86af5371e84c2b63611b37
SHA1

74391e33f128e69db49dcc0d4e89ccac84e2fa55
SHA256

08698dc796dd953a3468d93045f113358aff328472ba0c576f52ed87c3915ed4
SHA512

c43e00a8a480790471d4eca380aed8871a0914e1220ead9df4d55dd0eac922e11293c696c656cff274a0fad0dfa0534169afae4cdc4c7c312214124ec0a47ab3
SSDEEP

3072:hPSGkswvunpHYC3s2klhNhh6rY/Rl+QLFgYRk/XCuFD0Ko2OxA:6vt0sjh6rY/OQZkquSKc

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

f43e

Decoy

caiyi58.com

sonjoirhealth.biz

desertcleanpro.com

neorevolution.ltd

rocketconsumer.xyz

usnorthsideparts.com

shairacademy.com

checkloop.xyz

jeffthickman.com

mobifonecare.com

waafbox.com

nextiot.xyz

lotteryvegas.xyz

lamsaradio.net

plan2.xyz

seekerblogs.com

gftj9dc.sbs

mariobaburic.com

conimeexe.com

alkapon.biz

Targets

- Target
  
  JaffaCakes118_08698dc796dd953a3468d93045f113358aff328472ba0c576f52ed87c3915ed4
- Size
  
  188KB
- MD5
  
  b14a79e64e86af5371e84c2b63611b37
- SHA1
  
  74391e33f128e69db49dcc0d4e89ccac84e2fa55
- SHA256
  
  08698dc796dd953a3468d93045f113358aff328472ba0c576f52ed87c3915ed4
- SHA512
  
  c43e00a8a480790471d4eca380aed8871a0914e1220ead9df4d55dd0eac922e11293c696c656cff274a0fad0dfa0534169afae4cdc4c7c312214124ec0a47ab3
- SSDEEP
  
  3072:hPSGkswvunpHYC3s2klhNhh6rY/Rl+QLFgYRk/XCuFD0Ko2OxA:6vt0sjh6rY/OQZkquSKc
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2