formbook | 542a85bf2dd3eb90347b0e16f1724638be1463c1fc333ad471af402e85a70292

General

Target

JaffaCakes118_542a85bf2dd3eb90347b0e16f1724638be1463c1fc333ad471af402e85a70292
Size

188KB
Sample

241228-3fzfksvqfm
MD5

3f1c4ae6b5748ec905e178af8c5213d6
SHA1

99b4efd92b2739be250745b14b271fc99fb27d7f
SHA256

542a85bf2dd3eb90347b0e16f1724638be1463c1fc333ad471af402e85a70292
SHA512

153cfb67b23a01f412451397182e37593c28213610faf39a34e7c4a6b1f11d5696e7d8a7a2116dd67cc8e0d5278c552743d9bcf05c5ec3fccc30f54082339b55
SSDEEP

3072:N77CEOouu+G/j3VQrqsKqsF/jKUrG2SPPQYnDepDUo7Cl:kqLVWYqsF/MepzC

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

b16b

Decoy

tiffanychilds.com

qzenfood.com

bjshxxw.com

farmersdaughterdelivery.com

tafkcleaningservices.com

algofan.lease

qichev.com

cryptobuyer.site

suabinhnonglanh365.com

maizhuanji.com

alirbad.com

myfloaty.com

rebillionares.com

seafiw.com

b1khcj.com

designmehndi.com

careerguru.net

beijingbluestar-tech.com

bo426.com

ttmhkpzmz.com

Targets

- Target
  
  JaffaCakes118_542a85bf2dd3eb90347b0e16f1724638be1463c1fc333ad471af402e85a70292
- Size
  
  188KB
- MD5
  
  3f1c4ae6b5748ec905e178af8c5213d6
- SHA1
  
  99b4efd92b2739be250745b14b271fc99fb27d7f
- SHA256
  
  542a85bf2dd3eb90347b0e16f1724638be1463c1fc333ad471af402e85a70292
- SHA512
  
  153cfb67b23a01f412451397182e37593c28213610faf39a34e7c4a6b1f11d5696e7d8a7a2116dd67cc8e0d5278c552743d9bcf05c5ec3fccc30f54082339b55
- SSDEEP
  
  3072:N77CEOouu+G/j3VQrqsKqsF/jKUrG2SPPQYnDepDUo7Cl:kqLVWYqsF/MepzC
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2