formbook | 89b6e02900f1b4786e47c39c761759e75f963c273ba475c189c5b7185d7454b1

General

Target

JaffaCakes118_89b6e02900f1b4786e47c39c761759e75f963c273ba475c189c5b7185d7454b1
Size

188KB
Sample

241225-yra5xavqc1
MD5

f4528df882e530982e6e716e6dc4b1f3
SHA1

641c3e327a4ffe0adb63c3a0056e40ed0e12b36c
SHA256

89b6e02900f1b4786e47c39c761759e75f963c273ba475c189c5b7185d7454b1
SHA512

b930f697e63d1c81456c8ec93c031227ccaf9bfdde47abd9def776796b8466907a03265c1a81210931d1f7e0e84c0a9014ef391d81f837174a3b3021ebc9f280
SSDEEP

3072:UEshGjkFKhBM4O33DtXiRYFrafRXvPe5rKtNd8C5H32P:KRTHDxcArafRXWKvh13

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

a8fe

Decoy

xbrorj.icu

kreditkartenbankaut.com

bitcnruapp.com

qlqbu.icu

vlp064.icu

striacalker.xyz

pxjlwq.icu

buddy-books.com

dykj6.com

escopaints.com

bba-bb.xyz

brookeguddat.com

olcimt.icu

gatedconversion.com

aglsypz.icu

reviewrugs.com

rivellege.net

xye737.icu

veevinexport.com

realtorlakeanna.com

Targets

- Target
  
  JaffaCakes118_89b6e02900f1b4786e47c39c761759e75f963c273ba475c189c5b7185d7454b1
- Size
  
  188KB
- MD5
  
  f4528df882e530982e6e716e6dc4b1f3
- SHA1
  
  641c3e327a4ffe0adb63c3a0056e40ed0e12b36c
- SHA256
  
  89b6e02900f1b4786e47c39c761759e75f963c273ba475c189c5b7185d7454b1
- SHA512
  
  b930f697e63d1c81456c8ec93c031227ccaf9bfdde47abd9def776796b8466907a03265c1a81210931d1f7e0e84c0a9014ef391d81f837174a3b3021ebc9f280
- SSDEEP
  
  3072:UEshGjkFKhBM4O33DtXiRYFrafRXvPe5rKtNd8C5H32P:KRTHDxcArafRXWKvh13
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2