Behavioral task
behavioral1
Sample
7ef0000.dll
Resource
win7v20210410
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
7ef0000.dll
Resource
win10v20210408
0 signatures
0 seconds
General
-
Target
7ef0000.dll
-
Size
240KB
-
MD5
6aad38321e1f9cfee48810d8f3c4cad0
-
SHA1
2c874a2fe7d7c9f1840d1740b8c97561c09fb6a3
-
SHA256
5f3081eceee9bb9d968820fcc68a561c416036ac9bc68b13822b78e72d7b1fb9
-
SHA512
8891fa1a71f0bc2f1ea8ad1027467e1901ce70da48d56d9cf07797d8e3371f0237cc19ab19051b72761390bd94a4360eff09dbbb2fb6c45c850a9cb0128aa49e
Malware Config
Extracted
Family
gozi_ifsb
Botnet
6000
C2
todo.faroin.at
apr.intoolkom.at
r23cirt55ysvtdvl.onion
kas.kargoapp.at
gtk5.yaronav.at
io.feen007.at
l46t3vgvmtx5wxe6.onion
v3.navialpo.com
pop.biopiof.at
free.monotreener.com
sam.larenot.at
app.flashgameo.at
Attributes
-
exe_type
worker
-
server_id
580
rsa_pubkey.plain
serpent.plain
Signatures
-
Gozi_ifsb family
Files
-
7ef0000.dll.dll windows x64