Overview

overview

10

Static

static

10

7ef0000.dll

windows7_x64

1

7ef0000.dll

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7ef0000.dll

  • Size

    240KB

  • Sample

    210709-znnfa8fhg6

  • MD5

    6aad38321e1f9cfee48810d8f3c4cad0

  • SHA1

    2c874a2fe7d7c9f1840d1740b8c97561c09fb6a3

  • SHA256

    5f3081eceee9bb9d968820fcc68a561c416036ac9bc68b13822b78e72d7b1fb9

  • SHA512

    8891fa1a71f0bc2f1ea8ad1027467e1901ce70da48d56d9cf07797d8e3371f0237cc19ab19051b72761390bd94a4360eff09dbbb2fb6c45c850a9cb0128aa49e

Score
10/10
gozi_ifsb6000

Malware Config

Extracted

Family

gozi_ifsb

Botnet

6000

C2

todo.faroin.at

apr.intoolkom.at

r23cirt55ysvtdvl.onion

kas.kargoapp.at

gtk5.yaronav.at

io.feen007.at

l46t3vgvmtx5wxe6.onion

v3.navialpo.com

pop.biopiof.at

free.monotreener.com

sam.larenot.at

app.flashgameo.at
Attributes
  • exe_type

    worker

  • server_id

    580

rsa_pubkey.plain
serpent.plain

Targets

    • Target

      7ef0000.dll

    • Size

      240KB

    • MD5

      6aad38321e1f9cfee48810d8f3c4cad0

    • SHA1

      2c874a2fe7d7c9f1840d1740b8c97561c09fb6a3

    • SHA256

      5f3081eceee9bb9d968820fcc68a561c416036ac9bc68b13822b78e72d7b1fb9

    • SHA512

      8891fa1a71f0bc2f1ea8ad1027467e1901ce70da48d56d9cf07797d8e3371f0237cc19ab19051b72761390bd94a4360eff09dbbb2fb6c45c850a9cb0128aa49e

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks