General
-
Target
27851.png
-
Size
486KB
-
Sample
210421-n3twa6ehz2
-
MD5
0b26191e482cf7c321efeb8d2569caac
-
SHA1
0909177f5f88f101146bb4e31202ad92ebd8e223
-
SHA256
b553c5b6da9f88cfc7d00fba468abef8d2b7889f5f19b70e6c52a091f9854121
-
SHA512
169256f7cb7bfea1a151ac927b57f77d0b513038cea9232040bdec773faa3b92e4522324ab62ed8ea5a8c54293d0d5e1638ef01a88fbb316cd010f145bb85099
Static task
static1
Behavioral task
behavioral1
Sample
27851.png.dll
Resource
win7v20210410
Malware Config
Extracted
gozi_ifsb
4460
1.microsoft.com
horulenuke.us
vorulenuke.us
-
build
250190
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
27851.png
-
Size
486KB
-
MD5
0b26191e482cf7c321efeb8d2569caac
-
SHA1
0909177f5f88f101146bb4e31202ad92ebd8e223
-
SHA256
b553c5b6da9f88cfc7d00fba468abef8d2b7889f5f19b70e6c52a091f9854121
-
SHA512
169256f7cb7bfea1a151ac927b57f77d0b513038cea9232040bdec773faa3b92e4522324ab62ed8ea5a8c54293d0d5e1638ef01a88fbb316cd010f145bb85099
-