formbook

General

Target

b721de24bb88a9fb9ae36f96b5ba899d_JaffaCakes118
Size

536KB
Sample

240617-gxfh5sxgjh
MD5

b721de24bb88a9fb9ae36f96b5ba899d
SHA1

8ec7af6d279cd2280533ebfb211024c6088775a4
SHA256

1c761d2f1d96caf7adfd8d3ff3ffe5115bd9c870f3942874f11505667526df3a
SHA512

b0ed2c65898175622f8b742c1af6a9f2794182d0789d6bba3887441b2eb803472cc831e10c1d2de9752f4ea86dd659a79a9fcba319bd92b7723ad3678af2077e
SSDEEP

12288:LAv4NKgAC01fLLrHWNqVhr5g/LbRnRVrIA:HnSLrHgcy/fVz

Score

10^/10

formbook j1 rat spyware stealer trojan

Malware Config

Extracted

Family

formbook

Version

3.9

Campaign

j1

Decoy

559015.top

itwasntscalable.com

butteredcrumb.com

3124kk.com

boxerar.com

myk33.com

transitionwithtiffany.com

whitfielddiffie.com

youjieyuwang.com

nw2hl.info

calderas-profesionales.com

scoreoutlook.com

haloukaka.com

mysosdoctor.com

sologoods.com

thehonestcannabist.com

litlight.online

diodkm.ink

mojilifemedia.com

774opebet.com

Targets

- Target
  
  b721de24bb88a9fb9ae36f96b5ba899d_JaffaCakes118
- Size
  
  536KB
- MD5
  
  b721de24bb88a9fb9ae36f96b5ba899d
- SHA1
  
  8ec7af6d279cd2280533ebfb211024c6088775a4
- SHA256
  
  1c761d2f1d96caf7adfd8d3ff3ffe5115bd9c870f3942874f11505667526df3a
- SHA512
  
  b0ed2c65898175622f8b742c1af6a9f2794182d0789d6bba3887441b2eb803472cc831e10c1d2de9752f4ea86dd659a79a9fcba319bd92b7723ad3678af2077e
- SSDEEP
  
  12288:LAv4NKgAC01fLLrHWNqVhr5g/LbRnRVrIA:HnSLrHgcy/fVz
Score

10^/10

formbook j1 rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook payload

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2