Details

_id 5f0793d0353352821661b79f
reference ['https://www.virustotal.com/gui/file/48b81558e59b18c3d20b057608cf34821e4dbf7779a69af50530c611dac0738e/detection', 'https://app.any.run/tasks/352e9462-0a60-4fec-9ada-d8ad0e8ca2c3', 'https://twitter.com/robbiewhite98/status/1280518052560412675']
md5 ['3b5cc52ebfb46933d7665cf6125d9b72']
sha1 []
sha256 ['48b81558e59b18c3d20b057608cf34821e4dbf7779a69af50530c611dac0738e']
mail []
ip []
domain ['excelofficeonline.com']
url ['http://excelofficeonline.com/PO.exe']
user RobbieWhite98
tweet Same domain. more #Formbook. hXXp://excelofficeonline.com/PO.exe MD5: 3b5cc52ebfb46933d7665cf6125d9b72 20/71 VT Score: https://www.virustotal.com/gui/file/48b81558e59b18c3d20b057608cf34821e4dbf7779a69af50530c611dac0738e/detection … Run: https://app.any.run/tasks/352e9462-0a60-4fec-9ada-d8ad0e8ca2c3 … /cc @JAMESWT_MHT. @malwrhunterteam @Arkbird_SOLG @James_inthe_box Indicators: https://twitter.com/RobbieWhite98/status/1280518052560412675 … pic.twitter.com/nu0RUuao5Q
id 1281162071812583429
retweets 0
favorites 2
link https://twitter.com/RobbieWhite98/status/1281162071812583429
mentions ['@JAMESWT_MHT', '@malwrhunterteam', '@Arkbird_SOLG', '@James_inthe_box']
hashtags ['#Formbook']
timestamp 1594287815
date 2020-07-09 11:43:35

Tweet