skip to Main Content

Cybercrime, false “Belgesi” invoice conveys Formbook

Malware Hunter JAMESWT Technical Analysis

False “Belgesi” invoice conveys Formbook. The email gz attachment contains an exe file: the malware itself. This, if opened, activates the infection chain

A false “Belgesi” invoice conveys the latest Formbook campaign.

The email compressed attachment in gz format contains an exe file: the malware itself. This, if opened, activates the infection chain.

The goal of cybercrime is to steal sensitive data from victims. Formbook, in fact, through the keylogger function, is able to acquire everything the user types. It can also steal email and browser credentials, as well as take screenshots. Finally, it has the ability to remotely issue commands on the infected PC, such as downloading additional payloads or updating those present.

Back To Top