formbook | e14e45b78e78a58812378c62286ac69a672e1e9eed9ff07820ddc93ca49c4db4

General

Target

JaffaCakes118_e14e45b78e78a58812378c62286ac69a672e1e9eed9ff07820ddc93ca49c4db4
Size

188KB
Sample

241223-ygjpasyqgp
MD5

94c10fbb78fcd7ee33a0df71b15cd6f0
SHA1

beb24922c686adf4fd9e48a19f00acdd5ead0574
SHA256

e14e45b78e78a58812378c62286ac69a672e1e9eed9ff07820ddc93ca49c4db4
SHA512

74cca3a1057b329c28b49fbaa701ef8dc1daa86a134d3216064770f3ff8179f398e052aff1f2b15b5120b681b4da13e7fe0a8d34eb1f4c1a38f4d9d7511c83a1
SSDEEP

3072:TBoBkCDa6vrY37S2+lIE/6IyyEIKylgL3V8/Iie:sjW7Bc/6IyyDPgL3mwi

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

o0i7

Decoy

belleeffectivescore.com

llptys.com

osqua.xyz

happychicken.xyz

premiodasorte.com

ifozaks.cfd

indishjo.com

sarahtskinner.com

coquillon.com

mibesto803.com

usedselfdriving-car.com

findbusroutes.com

mtlcash.com

yy1j8jc.cfd

letsing2022.com

glideun.com

logansquaress22-23.com

amblermail140.xyz

leernota.com

twwq3hm.cfd

Targets

- Target
  
  JaffaCakes118_e14e45b78e78a58812378c62286ac69a672e1e9eed9ff07820ddc93ca49c4db4
- Size
  
  188KB
- MD5
  
  94c10fbb78fcd7ee33a0df71b15cd6f0
- SHA1
  
  beb24922c686adf4fd9e48a19f00acdd5ead0574
- SHA256
  
  e14e45b78e78a58812378c62286ac69a672e1e9eed9ff07820ddc93ca49c4db4
- SHA512
  
  74cca3a1057b329c28b49fbaa701ef8dc1daa86a134d3216064770f3ff8179f398e052aff1f2b15b5120b681b4da13e7fe0a8d34eb1f4c1a38f4d9d7511c83a1
- SSDEEP
  
  3072:TBoBkCDa6vrY37S2+lIE/6IyyEIKylgL3V8/Iie:sjW7Bc/6IyyDPgL3mwi
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2