Malware Signature
The following table shows a list of malware samples and the corresponding botnet C&C (ip:port) associated with FormBook
Database Entry
Malware: | Formbook |
---|---|
First seen: | 2018-10-24 12:32:09 UTC |
Last seen: | 2024-01-23 09:51:10 UTC |
Malware Samples
The table below documents all malware samples associated with this malware family.
Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
---|---|---|---|---|
2024-01-23 09:51:10 | 86c191298b152242ebb7d0a5eb8f417d | 38 / 68 (55.88%) | Formbook | 85.217.170.160:3232 |
2024-01-05 22:19:04 | 40dc181a1fec7dab10ea99caf3616f64 | 54 / 72 (75.00%) | Formbook | 27.147.169.101:3333 |
2023-10-13 13:27:13 | e947ec1430e0ffb3a6bc184d0857521e | 53 / 72 (73.61%) | Formbook | 103.82.38.49:4449 |
2023-10-04 00:54:21 | ea3090debf7241bf0c754c6e30c4a46c | 19 / 72 (26.39%) | Formbook | 79.134.225.113:9346 |
2023-09-01 09:14:39 | b7a2f8a222e9a20ba4e1c1a2d4b11fe7 | 0 / 59 (0.00%) | Formbook | 163.5.215.237:4449 |
2023-08-29 11:30:16 | b0e096dc6da8c62e6e118c2ddb619805 | 52 / 71 (73.24%) | Formbook | 213.3.43.23:58640 |
2023-08-21 19:09:00 | 07d7b0c883aaa32eb34838c8f383af9f | 22 / 66 (33.33%) | Formbook | 18.197.239.5:18516 |
2023-08-17 01:54:06 | 11e35b0a2eccee472b10632837ff6483 | 45 / 71 (63.38%) | Formbook | 185.106.94.122:4449 |
2023-04-04 07:53:54 | a62dadf46a2d22e707b4705c1cc92281 | 37 / 69 (53.62%) | Formbook | 124.120.53.223:4782 |
2023-02-26 23:07:21 | 3ebb0f1557af0bb23ff40eca3a14767d | 38 / 68 (55.88%) | Formbook | 89.38.131.104:4449 |
2023-02-15 20:02:38 | aba5075740d61e0655ae593bd41c12ed | 6 / 71 (8.45%) | Formbook | 193.138.195.211:10134 |
2023-02-02 16:35:36 | c5681f0e12aac8a5f3461b636bb03e0e | 42 / 71 (59.15%) | Formbook | 135.148.113.4:6789 |
2022-09-05 23:23:13 | 0727f10acffae1a2fbad5bdee8606d77 | 45 / 68 (66.18%) | Formbook | 18.169.191.45:443 |
2021-11-29 10:03:37 | ef3ede1c01478a047ebf21f074405803 | n/a | Formbook | 194.85.248.114:3462 |
2021-11-09 04:47:47 | 3c1bcfc5e5d1327746d9e8d3fdb5b49f | 40 / 69 (57.97%) | Formbook | 95.217.25.51:443 |
2021-11-08 16:54:42 | a8e8514aa8b9f6be0d29a25b9b7c8213 | 50 / 69 (72.46%) | Formbook | 95.217.25.51:443 |
2021-03-01 13:44:21 | 69bfa531e85418726ff2d7fbc2193418 | n/a | Formbook | 152.89.247.27:1210 |
2021-03-01 13:44:21 | 69bfa531e85418726ff2d7fbc2193418 | n/a | Formbook | 152.89.247.27:1210 |
2021-02-21 22:06:38 | 93230f71f7d6f961b29340ed111be2fd | 39 / 70 (55.71%) | Formbook | 180.97.251.173:443 |
2021-02-21 22:06:38 | 93230f71f7d6f961b29340ed111be2fd | 39 / 70 (55.71%) | Formbook | 180.97.251.173:443 |
2021-02-05 18:08:32 | 38f952ffa3caf6aa34e98a27d553a5b3 | n/a | Formbook | 193.161.193.99:50232 |
2021-02-05 18:08:32 | 38f952ffa3caf6aa34e98a27d553a5b3 | n/a | Formbook | 193.161.193.99:50232 |
2020-12-29 00:09:29 | 5934e6333c7581e6bcf0850aee157c8a | 38 / 64 (59.38%) | Formbook | 139.59.23.248:3439 |
2020-12-29 00:09:29 | 5934e6333c7581e6bcf0850aee157c8a | 38 / 64 (59.38%) | Formbook | 139.59.23.248:3439 |
2020-05-03 17:14:31 | 853f6e02c88f2cf9856e568960a07334 | 46 / 72 (63.89%) | FormBook | 139.28.222.104:443 |
2020-05-03 17:14:31 | 853f6e02c88f2cf9856e568960a07334 | 46 / 72 (63.89%) | FormBook | 5.45.71.35:443 |
2020-05-03 17:14:31 | 853f6e02c88f2cf9856e568960a07334 | 46 / 72 (63.89%) | FormBook | 139.28.222.104:443 |
2020-05-03 17:14:31 | 853f6e02c88f2cf9856e568960a07334 | 46 / 72 (63.89%) | FormBook | 5.45.71.35:443 |
2018-10-24 12:32:09 | 0860842b566151ffbd57a2825ed95a9f | 36/67 (53.73%) | Formbook | 54.39.81.120:443 |
2018-10-24 12:32:09 | 0860842b566151ffbd57a2825ed95a9f | 36/67 (53.73%) | Formbook | 54.39.81.120:443 |