Powered by Zoomin Software. For more details please contactZoomin

Flowmon ADS BPATTERNS Description

Table of Contents

Formbook_infostealer - description

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
Print
  • Last Updated: May 1, 2026
  • 1 minute read
    • Flowmon Products
    • Flowmon Anomaly Detection System
    • Documentation

Sources:

FormBook infostealer targeting aerospace and defense industry

Malicious spam campaign distributing FormBook information stealer

FormBook is malware primarily designed to steal data. It can also download and run files from command servers and execute commands using ShellExecute. While FormBook lacks distinctive features, its availability for rent at low prices on underground forums makes it accessible to many threat actors. This accessibility makes it difficult to identify which specific cybercriminal groups are responsible for recent malicious campaigns using this information stealer. FormBook primarily targets organizations in the aerospace and defense industries.

Flowmon ADS detects network communication during both the initial infection phase and subsequent post-infection traffic.

FormBook infostealer detection in Flowmon ADS
FormBook infostealer detection in Flowmon ADS

TitleResults for “How to create a CRG?”Also Available inAlert