Overview

overview

10

Static

static

10

375d1a9b98...30.exe

windows7-x64

1

375d1a9b98...30.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_7b9e88bba7598f0d565dbcbc34e6039ed3da00d007672f8e6ebfd0772ca4d7a3

  • Size

    138KB

  • Sample

    241230-3k8j2sxjax

  • MD5

    705f322afa2bf31d1047f29c3c4580d9

  • SHA1

    e102951a19056e2dc5603d12f30a09ec805ae3dd

  • SHA256

    7b9e88bba7598f0d565dbcbc34e6039ed3da00d007672f8e6ebfd0772ca4d7a3

  • SHA512

    d339cbcd7e774366129dc581ee1a1f010aefe1f3dbb1405569c6a49dde18e73006afd251e6817f1673acfe0b3d4947953bdecb5b7ab2841bdc56ff06c6627ba2

  • SSDEEP

    3072:eAvsiE2iuynrO+JU9rq0ktP1MGupSWE/FZkT:eAvXp6rg9rq0k8GupSb/z8

Score
10/10
formbookfs93discoveryrat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

fs93

Decoy

talesofterrorhaunt.com

adpir.com

federalexams.online

ontop88.one

sasquatchscreenprinting.com

thegoonstate.com

cuetik.com

334098.com

tronzolacero.xyz

fashion-therapy.co.uk

stationdjradio.com

28530wlakeviewcrt.info

hastingsreptiles.co.uk

iwabrisibolgamonica.my.id

propertymanagementsanjoseca.com

vrtic-zepce.com

jthme.com

nha-cai-v9bet.com

ikx2.com

yeslon.xyz

Targets

    • Target

      375d1a9b98531aaaf0d05ad0c23f5ddca52ec2bbd4d2abeeeab58d03f8d8b630

    • Size

      185KB

    • MD5

      f57b8f73c29253df1f3626a77c4f1050

    • SHA1

      efd61f0fa32705f43b2c0868ad2db5be14b2ae78

    • SHA256

      375d1a9b98531aaaf0d05ad0c23f5ddca52ec2bbd4d2abeeeab58d03f8d8b630

    • SHA512

      ea08e4c014a3c9874f675bedc32c9c2d177f455c3df416230f30752017c0d8b44f31e609314f8f00740daedd4150c0b459fa233820235d5f5b2043d724f7f95a

    • SSDEEP

      3072:C6fjkTNelMn+9Q3ewWmcf27fpnzBhg57/OecSJQtrUypyTgUGIY1acE:Lbee3m97fpnNUGehJ2UIX/IiaB

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks