FormBook | ea4815e7334c

Classifications

Injector Spyware Downloader

Threat Names

FormBook Mal/HTMLGen-A

Dynamic Analysis Report

Created on 2022-01-12T09:04:00

ea4815e7334c8e7663cf1ae6551bdd5233544ea0403edee6c77f0a49d9e795fe.doc.rtf

RTF Document

Remarks (1/1)

Anti-Sleep Triggered (0x0200000E): The overall sleep time of all monitored processes was truncated from "3 hours, 9 minutes" to "4 seconds" to reveal dormant functionality.

General

4.01 KB total sent

481.19 KB total received

1 ports: 80

14 contacted IP addresses

21 URLs extracted

8 files downloaded

0 malicious hosts detected

DNS

15 DNS requests for 14 domains

1 nameserver contacted

1 total requests returned errors

HTTP/S

13 URLs contacted, 12 servers

13 sessions, 4.01 KB sent, 481.19 KB received

Function Logfile

This feature requires an online-connection to the VMRay backend.

An offline version with limited functionality is also provided.
The offline version is supported only in Mozilla Firefoxwith deactivated setting "security.fileuri.strict_origin_policy".

Before

After

Screenshot