Overview

overview

10

Static

static

10

21aa6e31fd...5d.exe

windows7-x64

1

21aa6e31fd...5d.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_59ac60b271f92e372c7af1f44bccbb024ba4f609196ab4a13283f6d2bc9123b8

  • Size

    137KB

  • Sample

    241226-zfevdsyqgn

  • MD5

    d403b860aa32e9d9bf0443c7dd931d34

  • SHA1

    215d14bdda602f39e6f016e49a0603da30799ce8

  • SHA256

    59ac60b271f92e372c7af1f44bccbb024ba4f609196ab4a13283f6d2bc9123b8

  • SHA512

    ffa8781f6368fb80f2c0ed96f289f8b96942fe8d764d8186192c836efa26c6793887fbfb63fa362ce78ecabb9f7c4bd48a271fb28c2646608abc2a3e5d283011

  • SSDEEP

    3072:N2939rm5U6g6H8lAmkEiPWdDAYdvgUcaFRYzkBTwBvmLHB:N2m5J3SXkdWBV5ceNwBvmt

Score
10/10
formbookchbdiscoveryrat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

chb

Decoy

clearvuetaxadvisors.com

lechen.site

americansearchtech.com

madcat-ant.com

omestredochurrasco.com

mylovaram.com

exodusclean.com

afilliatalk.com

dyingtovote.com

aptivautoparts.com

envisionfordheights.com

wilmotfamily.com

lapalmeradedebora.com

maximize-coaching.com

longerlong.com

ecwdhome.com

marketplace-87436332.com

linguanzhuangshi.com

kangda8.com

relonglong.com

Targets

    • Target

      21aa6e31fdcbc0723a5ec1133cc6cb22d09e7a58275003f3ac01423be8bce85d

    • Size

      181KB

    • MD5

      f2b60a04202c95b976725202bfe86e03

    • SHA1

      7ec7ade05b35ef62314abf6ea83c62b214e28f57

    • SHA256

      21aa6e31fdcbc0723a5ec1133cc6cb22d09e7a58275003f3ac01423be8bce85d

    • SHA512

      6fdf77c66d5d8ecf47bf7ba01528f4643896ba69f880382e8fe27af9153587cfe01a249fb47cf6d5e5489a29c2eb4c7d4dfa5688b16b4ab360833eeb423cd35c

    • SSDEEP

      3072:pED/GI1Z17oh8w6hWQ64GkZNKH4H2uJzzdWMa/gJcH:WDDV7dWb4HLKH4H2u7WMBJq

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks