General
-
Target
SecuriteInfo.com.W32.AIDetect.malware1.9324.25842
-
Size
283KB
-
Sample
210226-9lt1s4wmlx
-
MD5
e77b724a59e7acc345bbb96925491c5b
-
SHA1
bc3db6af596f304b1b4f03117587148897ab67cf
-
SHA256
77e3afaec1b7b091e7f1fd3bbfac6aa65216e60d6b6f3c866304913278470f61
-
SHA512
e44e6bdc037466ee2519b2b684e34c303d2eeb1cf4daa5036355f695b2499f5fb97f99c64bb48e77e83c6fffa979fc19d26947c3120d61cf4c29af71f6e55fbc
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.W32.AIDetect.malware1.9324.25842.exe
Resource
win7v20201028
Malware Config
Extracted
gozi_ifsb
6565
updates.microsoft.com
klounisoronws.xyz
darwikalldkkalsld.xyz
c1.microsoft.com
ctldl.windowsupdate.com
195.123.209.122
185.82.218.23
5.34.183.180
bloombergdalas.xyz
groovermanikos.xyz
kadskasdjlkewrjk.xyz
-
build
250177
-
dga_season
10
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
SecuriteInfo.com.W32.AIDetect.malware1.9324.25842
-
Size
283KB
-
MD5
e77b724a59e7acc345bbb96925491c5b
-
SHA1
bc3db6af596f304b1b4f03117587148897ab67cf
-
SHA256
77e3afaec1b7b091e7f1fd3bbfac6aa65216e60d6b6f3c866304913278470f61
-
SHA512
e44e6bdc037466ee2519b2b684e34c303d2eeb1cf4daa5036355f695b2499f5fb97f99c64bb48e77e83c6fffa979fc19d26947c3120d61cf4c29af71f6e55fbc
-
Suspicious use of SetThreadContext
-