skip to Main Content

Cybercrime, new Formbook campaign via fake email from Dubai

Technical analysis by the Malware Hunter JAMESWT

New Formbook campaign via fake email from Dubai. The compressed attachment in zip format contains an executable. This is the malware itself and if opened it activates the infection chain

A false order of products from Dubai is the lure of the new Formbook campaign. The email compressed attachment in zip format contains an executable.

This is the malware itself and if opened it activates the infection chain.

The goal of cybercrime is to steal sensitive data from victims. Formbook, in fact, through the keylogger function, is able to acquire everything the user types. It can also steal email and browser credentials, as well as take screenshots. Finally, it has the ability to remotely issue commands on the infected PC, such as downloading additional payloads or updating those present.

Malware’s C2

Back To Top