Overview

overview

10

Static

static

10

fdee49da02...ab.exe

windows7-x64

1

fdee49da02...ab.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_ba925ecf8f63d0d88a9b22b4c23f41863558ab6a775c419508dc178d41f15581

  • Size

    140KB

  • Sample

    241224-vpyawasqdp

  • MD5

    ac88a90847f1a519b2fb5bd8ec69477e

  • SHA1

    17d1b2bc41291cb49a5670dd0dd54ee1fefbd832

  • SHA256

    ba925ecf8f63d0d88a9b22b4c23f41863558ab6a775c419508dc178d41f15581

  • SHA512

    af9650c3a2bfe1acc98fd83142dd86fc2906a6d88ff6619756a13ef4f7d01d91c94e039d2cea018fa7718b69af27188e2e1339337ffb060fe3d80894b3204a59

  • SSDEEP

    3072:+pU9ScmgTm2ZyrB16ck4o79XGUC/rTlDtawdXw31QZ86XYg:+paEgTzYrBDBM9XGvTTlDtaiw31Q/7

Score
10/10
formbookt39hdiscoveryrat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

t39h

Decoy

a101im2.com

nowherehome.city

shanglinrunair.com

yingyandiaocha88.com

ke77fu.top

vnitrni-bezpecnost.pro

feednigerianow.tech

788851.xyz

tristarnetwork.com

slsbuildingproducts.co.uk

stop-dog-diarrhea.site

place-dessert.store

tppstore.xyz

inapr.com

girlsmaza.com

mjbplumbers.co.uk

usmanagementcorp.com

any-markets.pro

vaynhanh.tech

4aged.com

Targets

    • Target

      fdee49da020d3af0cc598fab485bfecb1ccf1222b3ce93f10f4af64df74306ab

    • Size

      185KB

    • MD5

      98f59d513943b58e78426bb7dc2ac986

    • SHA1

      13af5fc469e12f87447540d6913e6e50fdaa7cb3

    • SHA256

      fdee49da020d3af0cc598fab485bfecb1ccf1222b3ce93f10f4af64df74306ab

    • SHA512

      40245128831bc00496dede01de9e260b2fbc53accce262a5f3b8d26ec00ea3e47cb0654ab693913bdf1deccfc8edcb688dcefe80ae8a099aa304a500a4a67450

    • SSDEEP

      3072:AfRzk8ZQeMzxr3b2ldwmY62lFTOyEW59bRfnSa5SlOv1UfU:OODb2wV62lFTOyEQ9bRfSuSlrM

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks