formbook

General

Target

4c3b65dd4922985d090d2c12598837727e199627e48fd19b071472382b240284.exe
Size

918KB
Sample

240625-brkb9asgkb
MD5

fb14abc040c25c13849b4c44308d962d
SHA1

60f55621f11075f2e3af4ae41baf2794a58d6a66
SHA256

4c3b65dd4922985d090d2c12598837727e199627e48fd19b071472382b240284
SHA512

c2fc0aaee60cafcea97f0158cc013ddff8dc097215375a94ddc633ff2abe14da36c54cfb1e9865bf89984e532c7951b19e1cf776d002c19b49698a5f55cae81b
SSDEEP

12288:90mTFhv5VQZ9WsgF91raePmsr55MGBoIaEXRavD7R5GsYG2ucI0zei:90m/x4xgF9hmDGFGeGVKf

Score

10^/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

na10

Decoy

tetheus.com

ventlikeyoumeanit.com

tintbliss.com

rinabet357.com

sapphireboutiqueusa.com

abc8bet6.com

xzcn3i7jb13cqei.buzz

pinktravelsnagpur.com

bt365038.com

rtpbossujang303.shop

osthirmaker.com

thelonelyteacup.com

rlc2019.com

couverture-charpente.com

productivagc.com

defendercarcare.com

abcentixdigital.com

petco.ltd

oypivh.top

micro.guru

Targets

- Target
  
  4c3b65dd4922985d090d2c12598837727e199627e48fd19b071472382b240284.exe
- Size
  
  918KB
- MD5
  
  fb14abc040c25c13849b4c44308d962d
- SHA1
  
  60f55621f11075f2e3af4ae41baf2794a58d6a66
- SHA256
  
  4c3b65dd4922985d090d2c12598837727e199627e48fd19b071472382b240284
- SHA512
  
  c2fc0aaee60cafcea97f0158cc013ddff8dc097215375a94ddc633ff2abe14da36c54cfb1e9865bf89984e532c7951b19e1cf776d002c19b49698a5f55cae81b
- SSDEEP
  
  12288:90mTFhv5VQZ9WsgF91raePmsr55MGBoIaEXRavD7R5GsYG2ucI0zei:90m/x4xgF9hmDGFGeGVKf
Score

10^/10

formbook na10 rat spyware stealer trojan
- Formbook
  Formbook is a data stealing malware which is capable of stealing data.
  trojan spyware stealer formbook
- Formbook payload
  rat
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

Formbook payload

Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2