formbook | e57459d3c90ba7c7dd092f344f8ef2eba4fd5b467ccef1f19c3626d2d58461e0

General

Target

JaffaCakes118_e57459d3c90ba7c7dd092f344f8ef2eba4fd5b467ccef1f19c3626d2d58461e0
Size

184KB
Sample

241230-b3ldpatnar
MD5

6fbf4a1bceab91cbc040bb628285c08e
SHA1

a83059c1cb767dc907fdd883dd48618e231659e0
SHA256

e57459d3c90ba7c7dd092f344f8ef2eba4fd5b467ccef1f19c3626d2d58461e0
SHA512

7b31040f997f30a030115cacc97ea86f8288e95ae8c40e5aa29c8c49ef311a760f67c2c730b371f925f02c4ee70675901e5fdcf79d990f9f5fa1927e42cd0396
SSDEEP

3072:Nrl7Igz17cSqxqw6w7RUzqaFWaCKalyKchkHwhTxQgHyyYMdzTpCs:d1A4w6eIqaIafaMKOTxXHy8dz

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

3nop

Decoy

videohm.com

panache-rose.com

alnooncars-kw.com

trueblue2u.com

brussels-cafe.com

ip2c.net

influenzerr.com

rbcoq.com

zzful.com

drainthe.com

sumaholesson.com

cursosaprovados.com

genotecinc.com

dbrulhart.com

theapiarystudios.com

kensyu-kan.com

dkku88.com

tikhyper.com

aztecnort.com

homebrim.com

Targets

- Target
  
  JaffaCakes118_e57459d3c90ba7c7dd092f344f8ef2eba4fd5b467ccef1f19c3626d2d58461e0
- Size
  
  184KB
- MD5
  
  6fbf4a1bceab91cbc040bb628285c08e
- SHA1
  
  a83059c1cb767dc907fdd883dd48618e231659e0
- SHA256
  
  e57459d3c90ba7c7dd092f344f8ef2eba4fd5b467ccef1f19c3626d2d58461e0
- SHA512
  
  7b31040f997f30a030115cacc97ea86f8288e95ae8c40e5aa29c8c49ef311a760f67c2c730b371f925f02c4ee70675901e5fdcf79d990f9f5fa1927e42cd0396
- SSDEEP
  
  3072:Nrl7Igz17cSqxqw6w7RUzqaFWaCKalyKchkHwhTxQgHyyYMdzTpCs:d1A4w6eIqaIafaMKOTxXHy8dz
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2