formbook

General

Target

9aed70a63a9b5ba11bd1f44177f1a1ad_JaffaCakes118
Size

284KB
Sample

240610-rf5rtayhkp
MD5

9aed70a63a9b5ba11bd1f44177f1a1ad
SHA1

3dcd99b61503cc69cdcddeb783f746da5f167edb
SHA256

fa580f04db69517d1b9f7f9e1d88367e89645f90d8eb0698c4793389d3aabda8
SHA512

2d9edf0d7f5ccdebf27690a5269a87334cbe8d64a676e9b3ee23c191cf3449387446c7968cbfa53a8bc16d3becc5395a1b370a6e633c35e2dbdddc03909f110c
SSDEEP

3072:VuH0Vy0up0NMjbcORKCwNETwoWqcFysVKHxnIZJpS9eqsqcD4JoMf:EHmy0dNMjQDCwNETw359axnIZb6sMJh

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

3.8

Campaign

css

Decoy

fnxmedia.com

joakimnoahonline.com

prorokers.net

otfego.info

lucao20201.com

1q4y6.info

carefullyhandmade.com

walktalkbaby.com

carpetcanvas.win

boyzpro.com

the-one-wave.com

cbd-oil.online

uiiuii.net

securitycameraadvisor.com

phillipsfarmstead.com

vssuq.info

huasitee.com

bitandbreakfast.com

poiuyt.info

haterstyle.com

Targets

- Target
  
  9aed70a63a9b5ba11bd1f44177f1a1ad_JaffaCakes118
- Size
  
  284KB
- MD5
  
  9aed70a63a9b5ba11bd1f44177f1a1ad
- SHA1
  
  3dcd99b61503cc69cdcddeb783f746da5f167edb
- SHA256
  
  fa580f04db69517d1b9f7f9e1d88367e89645f90d8eb0698c4793389d3aabda8
- SHA512
  
  2d9edf0d7f5ccdebf27690a5269a87334cbe8d64a676e9b3ee23c191cf3449387446c7968cbfa53a8bc16d3becc5395a1b370a6e633c35e2dbdddc03909f110c
- SSDEEP
  
  3072:VuH0Vy0up0NMjbcORKCwNETwoWqcFysVKHxnIZJpS9eqsqcD4JoMf:EHmy0dNMjQDCwNETw359axnIZb6sMJh
Score

10^/10

formbook css rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2