Automated Malware Analysis - Joe Sandbox Cloud Basic

Threat	Antivirus	Time & Date	Name
FormBook	39%	28.10.2021 07:39:12	MAPO-PI.exe
FormBook	50%	28.10.2021 07:38:10	DWG.exe
AveMaria FormBook UACMe	50%	28.10.2021 07:17:06	TW_PURCHASE ORDER _BENTEX LTD_26201.exe
FormBook	36%	28.10.2021 00:35:11	PO_101&102.exe
FormBook	None	28.10.2021 00:21:08	PO_101&102.exe
GuLoader FormBook	32%	27.10.2021 20:12:13	RYATPPETU.exe
FormBook	15%	27.10.2021 19:32:19	NvkGETsSDb.exe
FormBook	10%	27.10.2021 19:30:18	VJaX7U6LAp.exe
FormBook	37%	27.10.2021 19:04:20	X4WVDz35mI.exe
FormBook	13%	27.10.2021 19:04:20	CtTYTpaAKA.exe
FormBook Neshta	34%	27.10.2021 18:59:18	KFoTnHP6B2.exe
FormBook	50%	27.10.2021 18:07:15	purchase Order.xlsm
DBatLoader FormBook	30%	27.10.2021 18:02:19	QUOTATION_doc.exe
FormBook	0%	27.10.2021 17:45:15	Betalingskvittering.exe
DBatLoader FormBook	39%	27.10.2021 17:11:13	T-T Swift Copy.exe
FormBook	51%	27.10.2021 16:32:10	C.V_Job Request.doc
FormBook	40%	27.10.2021 16:32:10	Purchase order.doc
FormBook	32%	27.10.2021 16:32:10	Packing List.xlsx
FormBook	0%	27.10.2021 16:28:08	583475.exe
FormBook	None	27.10.2021 16:18:06	New order payment.exe

Windows:

InjectsWrites Registry keysDrops PE FilesHas more than one ProcessHas Email attachmentDisassembly is available

Android: Receives SMS Sends SMS Reboot Native CMD

Common: Generates Internet Traffic Generates HTTP Network Traffic Expired Sample Creates malicious files

Search results for "threatnames:FormBook" (limited to max. 20)