formbook | f11bf0f5b97161b5d27b4cbbc02fae52957df15646513874df10bc06d1d4e5df | Triage

Submit
Reports

Overview

overview

Static

static

SecuriteIn...88.exe

windows7_x64

SecuriteIn...88.exe

windows10_x64

Sharing

General

Target

SecuriteInfo.com.BackDoor.SpyBotNET.17.10332.27788
Size

455KB
Sample

200801-7t54knswfn
MD5

8c5fad5ff5c2c0af9ce18b5130f3d43c
SHA1

0e2cb2a9fd256afdb2a877fa0b8fbe6c7d30c6b4
SHA256

f11bf0f5b97161b5d27b4cbbc02fae52957df15646513874df10bc06d1d4e5df
SHA512

c3ecee109de715fb49ca3e8fd35b598c01ff59ccaf377bfb3b2f5d8463bad6e469a89f8dd56cdae3781335a72e3eb695c7dd4f675f9f64712e97f9fea5fafed2

Score

10^/10

formbook rat spyware stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

SecuriteInfo.com.BackDoor.SpyBotNET.17.10332.27788.exe

Resource

win7v200722

rat trojan spyware stealer formbook

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

SecuriteInfo.com.BackDoor.SpyBotNET.17.10332.27788.exe

Resource

win10v200722

rat trojan spyware stealer formbook

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  SecuriteInfo.com.BackDoor.SpyBotNET.17.10332.27788
- Size
  
  455KB
- MD5
  
  8c5fad5ff5c2c0af9ce18b5130f3d43c
- SHA1
  
  0e2cb2a9fd256afdb2a877fa0b8fbe6c7d30c6b4
- SHA256
  
  f11bf0f5b97161b5d27b4cbbc02fae52957df15646513874df10bc06d1d4e5df
- SHA512
  
  c3ecee109de715fb49ca3e8fd35b598c01ff59ccaf377bfb3b2f5d8463bad6e469a89f8dd56cdae3781335a72e3eb695c7dd4f675f9f64712e97f9fea5fafed2
Score

10^/10

rat trojan spyware stealer formbook
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook Payload
  rat
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

rattrojanspywarestealerformbook

behavioral2

rattrojanspywarestealerformbook

© 2018-2024

Terms | Privacy