Live Latest activity →

Formbook - Malware Samples

448 samples tracked (rolling 30 days)

Last updated: 2026-06-12

This page lists the most recent Formbook malware samples collected from MalwareBazaar. Each entry includes the SHA256 hash (linked to the MalwareBazaar sample page), original file name, file type, size, and VirusTotal detection rate where available. Samples are updated daily and retained for a rolling 30-day window.

How to Use This Data

Security teams can use these hashes in several ways. Import them into your SIEM or EDR platform to detect known Formbook variants in your environment. Cross-reference file names against your email gateway logs to identify phishing campaigns delivering this family. The file type distribution reveals which delivery formats are currently in use - a shift from .exe to .msi or .js may indicate the operators are adapting to your defenses. Samples with low or missing VirusTotal detection rates are the most dangerous - these are fresh variants that may bypass signature-based protection.

About the Data

All samples are sourced from MalwareBazaar, a free malware sample sharing platform operated by abuse.ch. Detection rates come from VirusTotal. This data is provided for defensive purposes only. For the latest Formbook indicators of compromise including C2 servers and domains, see the IOC page.

SHA256 File Name Type Size Detection First Seen Country
772b1228f031de8d... RFQX11062026.zip zip 19.8 KB 30/63 2026-06-12 -
4d0553443e7b38a2... OrderXno.X3241688.rar rar 7.1 KB 31/60 2026-06-12 -
6c417a7be904852d... DOWNXPAYMENTXCOPY_20260510_160955_0000.rar rar 843.5 KB 34/46 2026-06-12 -
7caff20c50d04bc0... SWIFTXUSDX22.496,32X20261032254113.rar rar 7.2 KB 32/61 2026-06-12 -
dcea95d8021d391a... NewXQuote.rar rar 802.9 KB 47/63 2026-06-12 -
39603c646ed7cc71... New Quote.com exe 1.3 MB 46/69 2026-06-12 -
d6d6f9c0160cf7bf... RFQ 11062026.js js 2.5 MB 27/60 2026-06-11 -
58d435f0675c2331... GLD-QTN-10422.js js 2.9 MB 24/60 2026-06-11 -
671c99fe3edc789c... Swift_USD.js js 2.9 MB 28/58 2026-06-11 -
34b0d10ee1f8927d... ysTD_v11.7.4.6842.exe exe 1.0 MB 49/66 2026-06-11 -
ef6e6eeefd2da3e9... QUOTATION.exe exe 1.2 MB - 2026-06-11 -
fcf77056fc4d3515... INQUIRY_FORMpdf.js js 27.2 KB - 2026-06-11 -
919b5cd185f5a5cc... MASTER_CTM_BREAKDOWN.exe exe 1.1 MB - 2026-06-11 -
2e190a4c22601d5e... DI-1017-PH1-26_ABBREVIATED_CON.com exe 1.1 MB - 2026-06-10 -
a52f2947d9dd682c... Quotation Request_7009.js js 25.8 KB - 2026-06-10 -
bd6dc1b2bf27d2fe... New Order.js js 3.0 MB - 2026-06-10 -
7b1e8b201a6cd8f1... Nostro Ordine 264418 PDF.js js 3.0 MB - 2026-06-10 -
b9ffd24643748eaa... TR9302.js js 3.0 MB - 2026-06-10 -
c9d9fb517eaedbaa... SWIFT USD 22.496,32 20261032254113.js js 71.7 KB - 2026-06-10 -
265d12ace3e4a41c... Qot220190402606.vbs vbs 1.9 MB - 2026-06-10 -
f77faf7d8d425fdb... PO_2026.scr.exe exe 1.2 MB - 2026-06-10 -
d1654ee1272baee7... SecuriteInfo.com.Trojan.FbngENT.1.24657.7307 exe 278.5 KB - 2026-06-10 -
dbbce171d3da70ed... RFQ;KC&GC L.L.C-100626.js js 2.1 MB - 2026-06-10 -
add86e84bb76decd... New Order.vbs vbs 322.1 KB - 2026-06-10 -
dece042526daa8ea... INVOICE-PAYMENT ADVICE.vbs vbs 399.7 KB - 2026-06-10 -
60cda0957c7f3d24... Payment_pdf_copy_HSBC.js js 717.3 KB - 2026-06-10 -
854d742f0b61942f... SWIFT90927828920.PDF.JS js 7.2 MB - 2026-06-10 -
4aedf4dd44e8a50d... SMITH Parts needed STM-MICRON.js js 20.6 KB - 2026-06-10 -
d2b037c58245ecd0... UP93C-0620226.js js 3.0 MB - 2026-06-10 -
7c34daec0cb3c319... PO_20931.js js 3.0 MB - 2026-06-10 -
adb6adcb960e22b1... Purchase Order.js js 2.9 MB - 2026-06-10 -
86226b8c291f202a... RFQ_967.pdf.js js 779.3 KB - 2026-06-10 -
09a6d54e4d535c00... Payment Advice.js js 782.3 KB - 2026-06-10 -
96e6b3c46e1e0994... Order no. 3241688.js js 71.0 KB - 2026-06-10 -
af3a25f876e16859... M.T. MH.HIGHLANDER.VESSEL.INFORMATION.exe exe 1.0 MB - 2026-06-10 -
07298e1dc4311417... New Quote.com exe 1.1 MB - 2026-06-09 -
e50e2fd4c61ba461... 567187.vbs vbs 178.2 KB - 2026-06-09 -
3cc0a87fdfbbc3f7... first_order_20.scr.exe exe 1.1 MB - 2026-06-09 -
a842f17e63301d2e... Invoice_2776 (30% Advance) – PO JB252-PO11.js js 3.0 MB - 2026-06-09 -
d033dea68104929b... Vessel_Particulars_Appointment_Letterpdf.exe exe 1.0 MB - 2026-06-09 -
9b014b91cbab69a2... List of Required Items.lnk lnk 1.6 KB - 2026-06-08 -
26a0c3085bb3d270... New Quote.com exe 1.1 MB - 2026-06-08 -
5398021213a4e2d9... 5398021213a4e2d98a3eec3b19d4e14458ed62400eaeb3e329c9d287c0ca8b02 exe 268.0 KB - 2026-06-08 -
daf67ebcf0c226a9... SecuriteInfo.com.Win32.MalwareX-gen.49147133 exe 1.1 MB - 2026-06-08 -
628a9edf53eccd17... 628a9edf53eccd17a23ab89aaebdf7d859e60b20442757f3b3782fc33f6d1bec exe 1008.5 KB - 2026-06-08 -
8dc1eb09176de75f... 8dc1eb09176de75ffcc67bb41e032b98a9afd401449e170fc548775d4fa3f855 exe 1021.0 KB - 2026-06-08 -
c40f8295708cd278... c40f8295708cd278252addbc5f42bc9ee1c221efa8c1bbc2b3e7dbb8f8ea8eb3 exe 906.5 KB - 2026-06-08 -
491dab158ca711b0... 491dab158ca711b09faac6a22fde891fb70956dd3ec0c39811f0fa4053a6213e exe 1.0 MB - 2026-06-08 -
b0102b82b3d908ea... b0102b82b3d908eafd6a245e857df631a9981769ab6d7f475e827a65cea69d07 exe 996.0 KB - 2026-06-08 -
0bac76482148c816... 0bac76482148c816b63af8a4df15f51b32365b7bdb3253e85b61c4f2cbdcc335 exe 982.5 KB - 2026-06-08 -
63dc260a747b9043... 63dc260a747b9043efb746b691bfc5a9237d1b152321a901bfe156b33e723c9c exe 902.0 KB - 2026-06-08 -
f9170a73b49965c9... f9170a73b49965c916df38ea51e94fcb08502f1ec268bdc5733a74d42d65594a exe 1001.5 KB - 2026-06-08 -
5f2376321572d45c... 5f2376321572d45c6249aef1cee957634010feceb4feb8a40ab1f8de1841904a exe 279.0 KB - 2026-06-08 -
47c49ad0bd2ec1c5... 47c49ad0bd2ec1c5840fbc8e9c6e797b522319ce8194d25aca69a5cd48b4d8ff exe 993.5 KB - 2026-06-08 -
2028ed4a8655fc6d... 2028ed4a8655fc6d6607aa3c56851a877200e02d622d4ff634101ab71d969bcc exe 914.5 KB - 2026-06-08 -
16ef07a309e47d05... 16ef07a309e47d0579af30471dd149c77a2fe6264536454f7c512813fea0829d exe 1.0 MB - 2026-06-08 -
06840a4bac62abfd... 06840a4bac62abfd410be15bd45ae47a9516682515baa9c981058428815c5fe7 exe 1021.5 KB - 2026-06-08 -
6eae8440eb01ecb9... 6eae8440eb01ecb989722a4d32dd56832c40b0f3e554c375af276e07d6fc4138 exe 1023.5 KB - 2026-06-08 -
9f88592a5afb3134... 9f88592a5afb313401f7fc0a8a0ee9c9a7e185b5955ae378663753d72a0600d0 exe 1006.0 KB - 2026-06-08 -
5432286c7bbd6765... 5432286c7bbd67650ce161c9b15554ab8b886cb59c5c4ec12cdb92baf5e4c80f exe 1005.0 KB - 2026-06-08 -
87d6e4f14c49abc1... 87d6e4f14c49abc1b9c37e8ad0db345db9caf35c2e4aa25a63f857d4aadc1faa exe 991.0 KB - 2026-06-08 -
e8e2a99ff1ac18ee... e8e2a99ff1ac18ee4e62bd51291ae4ae33c70132d10fc1a7605adaffe25d7479 exe 1013.0 KB - 2026-06-08 -
beba443732567d81... beba443732567d81bdec4eb6b54321f535fa815917159a8e1deaf916c1c70a29 exe 1.0 MB - 2026-06-08 -
277556241393adfa... 277556241393adfada4af71feb2311991578675838a76b48cc6439510c9b5605 exe 992.5 KB - 2026-06-08 -
70edfcb964830c49... 70edfcb964830c49cff06700f4fca9aa5eca2e4fcc93f428da4ee151b9fe216b exe 995.0 KB - 2026-06-08 -
72626a13946d1ec7... 72626a13946d1ec71bd3a688d45cdc5563d092da4d1d933d1639565618e7cf0c exe 988.5 KB - 2026-06-08 -
6ac6126e8f242b42... 6ac6126e8f242b42ac71a251bf9f4c8e45d7eaa8fc1fd6ea5bff661498848a0b exe 995.5 KB - 2026-06-08 -
35460d0ed6ddee3f... 35460d0ed6ddee3f707f73eaacf6e49f09f789bdbf460c21f491ba2ff2bb78ef exe 890.5 KB - 2026-06-08 -
180ed78f5aa54c94... 180ed78f5aa54c948ec93fd26a3a4d9c5ee3baf52211c827e19129e2b5516517 exe 992.5 KB - 2026-06-08 -
eca1963a83775e82... eca1963a83775e8200ce3674133f9f6993f018ec54664f3a771b97e41ef47ad8 exe 1.2 MB - 2026-06-08 -
4d137b0f85e967fa... 4d137b0f85e967fa77cdc2b07bd869db5b0180d3639aae384bc0eb6f2d740243 exe 1003.5 KB - 2026-06-08 -
1cf5d18006cdc8ec... 1cf5d18006cdc8ecf109429eec354ede88145ad2d3be484dc5b8935afb3e00ca exe 278.0 KB - 2026-06-08 -
7fd7bd2b8be87e7a... 7fd7bd2b8be87e7a7d1f1a35b8e2f115a9393b11684ee7e94b5d66b938906afc exe 898.5 KB - 2026-06-08 -
a8bb0249e51a19d2... a8bb0249e51a19d2a7c9d326c496cc4a5564c3be5389cee77c292de6c1285aca exe 996.5 KB - 2026-06-08 -
57e753a6d49e97de... 57e753a6d49e97decfdfd33977c017da0c19955d69b6aeb150a7f9c80bca1134 exe 987.5 KB - 2026-06-08 -
4954418adaef22b8... 4954418adaef22b8f70bd03d05daf3fe790a4c21ec0ecfd40b1727297019832f exe 990.5 KB - 2026-06-08 -
54fcdd0391f350af... 54fcdd0391f350af46910df67db7d18bd314c17cea5cb8e6e38e58de6c470b83 exe 1002.0 KB - 2026-06-08 -
e8b904ca4232feca... e8b904ca4232fecac9d94deac3c56e48ba47e3ceb9299f009256daddcdb2cc95 exe 1019.0 KB - 2026-06-08 -
a8d0d39ecb6c9bf0... a8d0d39ecb6c9bf04fe201e447a7f5eb9b53b7bcd659946c568a9ed65ade2b92 exe 1.5 MB - 2026-06-08 -
173557fb83b824c1... 173557fb83b824c17433c9f5ba82c0d446a3fdad6e580c81795c4feadcea3350 exe 984.5 KB - 2026-06-08 -
6b735b814780014e... 6b735b814780014e146aecb368af21b430cff011487ada5f211102c5859a7eb3 exe 1003.0 KB - 2026-06-08 -
26d162331f7179d6... 26d162331f7179d6978fd35569baddfba36f1dae069b3d748ebfe5dc366bcafc exe 1001.5 KB - 2026-06-08 -
037dd32d19681137... 037dd32d196811373fe258f5ea9607e67e7aca7199630211dec9b3b9e2afc796 exe 1.1 MB - 2026-06-08 -
33c35a6c061c0e7d... 33c35a6c061c0e7db64a16f71b4d765588728dc2c8cf8efbb0763fa1d836a17f exe 1.0 MB - 2026-06-08 -
84ba64e1bbd5aca8... 84ba64e1bbd5aca89c4daeaee79703d8c9aa6fba1d889fcdb2d3ff0b56780e50 exe 891.5 KB - 2026-06-08 -
f3da5b1569e78dc9... f3da5b1569e78dc92d5e31cb746f701318b898ea45c162541248786c3cf8c659 exe 996.0 KB - 2026-06-08 -
a331fc529c635de6... a331fc529c635de6385adbaccdd063a20b47a53e7e88f5add8c585c8929a0cd4 exe 278.5 KB - 2026-06-08 -
e8bc37b3088f4b62... e8bc37b3088f4b623484f5518175a3724e1112ab81a3b58ce746ed069023a441 exe 1.1 MB - 2026-06-08 -
887bb57c73bb53e9... 887bb57c73bb53e963aeac0a792349c58aecb3629aaa8019eb6e813f9411b92c exe 278.0 KB - 2026-06-08 -
a99bac1e728dc568... a99bac1e728dc56860037cee42d2b3f22c50f987e10e010db92f29f88b6f8521 exe 279.0 KB - 2026-06-08 -
1dcf264b55ed2d7a... 1dcf264b55ed2d7adfb5b5618ca2c5b2fde7f3f9027faa975cfd0a14f031840e exe 1.1 MB - 2026-06-08 -
3258281b08c02612... 3258281b08c02612df22e87f5616c82a3681838c4c10e63d0de0e2740af1c4bd exe 1.1 MB - 2026-06-08 -
2a9060e190eddef0... 2a9060e190eddef05690de49007fd643a26b54a96bf24c06623fd53f56aee8f8 exe 278.5 KB - 2026-06-08 -
dcbd0cfd58ec447b... dcbd0cfd58ec447bbb0d1ea54a8a385e4938bd499fa7d0cba85f9ba95520c2bc exe 1010.0 KB - 2026-06-08 -
abf64e6e2580c4ff... abf64e6e2580c4ffb8e4740271bab74654cf1eec931ed50e7f6a7e6eeaab8fec exe 1.1 MB - 2026-06-08 -
a9b9cb7942b46d42... a9b9cb7942b46d4296423500146163cad6ee7873cb980ca873eb0466f5823b6f exe 1.1 MB - 2026-06-08 -
af329e4d5e2b7119... af329e4d5e2b71199df9dcc4ce27958f9bbcf4a6748ee0739732e71893fbd8cc exe 1.0 MB - 2026-06-08 -
20c76c5189319d05... 20c76c5189319d05bf70a914ac36888ac32d490aa15118dac53584a60a95d2ab exe 1020.0 KB - 2026-06-08 -
fde3cfa6b94b5f00... fde3cfa6b94b5f00eabe6b517c953b3c414070aa042834844e3ae83608f4ba5e exe 1.0 MB - 2026-06-08 -
35eda09992c83562... 35eda09992c83562e1ac9c2e93bed64f888fb0ddcf46be42a26f1d56dfea1521 exe 1017.0 KB - 2026-06-08 -

Related

← Formbook Overview Formbook IOCs Detection Rate Distribution All Families