formbook | 8bc730658c381f36b804c0e3e0b36a3f6c8b45433118bbe3326a4a608a0f753a

General

Target

JaffaCakes118_8bc730658c381f36b804c0e3e0b36a3f6c8b45433118bbe3326a4a608a0f753a
Size

167KB
Sample

241228-3zhxyawlhk
MD5

5efb2be790cbe8f7458e7742ea27e787
SHA1

f85dc20e4ee69095eefa1f0b5ffda34788640f86
SHA256

8bc730658c381f36b804c0e3e0b36a3f6c8b45433118bbe3326a4a608a0f753a
SHA512

3ae765d2d260ff0fcfadcf30a2467188ce10afe0078eb3de1d2c2e0b661614609099366b9ca4bd8574157fe07a3d82f708096c0d98f3fa469fce94164aee2fd1
SSDEEP

3072:ytJXqPTLn7HgqrWy2gGp70gsDn8QIawIy210+HMB:m6tiR5sDn8laNOig

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

3.9

Campaign

ev08

Decoy

elysianhomesanddesign.com

emplytics.com

rx-server.com

yunkeguanjia.com

069xke.info

xgltnpzoai.biz

vizebasvurusuislemi.com

willenochhardscape.com

luciovicencio.com

369zhangting.com

dealsamzn.com

epsilontech.net

longzhimy.com

drfenxiyi.com

perfecttiger.win

jon-lisa.com

projeen.com

tpak4.com

telurasinjulak.com

grhcew.men

Targets

- Target
  
  JaffaCakes118_8bc730658c381f36b804c0e3e0b36a3f6c8b45433118bbe3326a4a608a0f753a
- Size
  
  167KB
- MD5
  
  5efb2be790cbe8f7458e7742ea27e787
- SHA1
  
  f85dc20e4ee69095eefa1f0b5ffda34788640f86
- SHA256
  
  8bc730658c381f36b804c0e3e0b36a3f6c8b45433118bbe3326a4a608a0f753a
- SHA512
  
  3ae765d2d260ff0fcfadcf30a2467188ce10afe0078eb3de1d2c2e0b661614609099366b9ca4bd8574157fe07a3d82f708096c0d98f3fa469fce94164aee2fd1
- SSDEEP
  
  3072:ytJXqPTLn7HgqrWy2gGp70gsDn8QIawIy210+HMB:m6tiR5sDn8laNOig
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2