Overview

overview

10

Static

static

SecuriteIn...42.exe

windows7_x64

10

SecuriteIn...42.exe

windows10_x64

10

Analysis

  • max time kernel
    43s
  • max time network
    42s
  • platform
    windows7_x64
  • resource
    win7v20201028
  • submitted
    26-02-2021 09:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SecuriteInfo.com.W32.AIDetect.malware1.9324.25842.exe

  • Size

    283KB

  • MD5

    e77b724a59e7acc345bbb96925491c5b

  • SHA1

    bc3db6af596f304b1b4f03117587148897ab67cf

  • SHA256

    77e3afaec1b7b091e7f1fd3bbfac6aa65216e60d6b6f3c866304913278470f61

  • SHA512

    e44e6bdc037466ee2519b2b684e34c303d2eeb1cf4daa5036355f695b2499f5fb97f99c64bb48e77e83c6fffa979fc19d26947c3120d61cf4c29af71f6e55fbc

Score
10/10
gozi_ifsb6565bankertrojan

Malware Config

Extracted

Family

gozi_ifsb

Botnet

6565

C2

updates.microsoft.com

klounisoronws.xyz

darwikalldkkalsld.xyz
Attributes
  • build

    250177

  • dga_season

    10

  • exe_type

    loader

  • server_id

    12

rsa_pubkey.base64
serpent.plain

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.W32.AIDetect.malware1.9324.25842.exe
    "C:\Users\Admin\AppData\Local\Temp\SecuriteInfo.com.W32.AIDetect.malware1.9324.25842.exe"
    1⤵
      PID:2008

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2008-2-0x0000000000B50000-0x0000000000B61000-memory.dmp
      Filesize

      68KB

      Download
    • memory/2008-3-0x0000000000020000-0x000000000002C000-memory.dmp
      Filesize

      48KB

      Download
    • memory/2008-4-0x0000000000400000-0x000000000040F000-memory.dmp
      Filesize

      60KB

      Download