Overview

overview

10

Static

static

10

e110000.dll

windows7_x64

1

e110000.dll

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e110000.dll

  • Size

    240KB

  • Sample

    210712-zczbn59lve

  • MD5

    f3ae979c0adf0cd33877d94b74099134

  • SHA1

    1d9e8b4048e8933fd26b4248bacdb8e96da62cdf

  • SHA256

    72ebdd59699fd705efba6cf5f171f09a7c305a4b69e863d8183e3fdf00dc090b

  • SHA512

    fecc7fc1c6f4f3f12716a989da3dded68cb45a14bf5db3c7fe52f79af39e45ae4e65b4088246c3f69385585e024d2ccb2c4cc9fba768e9fc15fbf01cd511bf8b

Score
10/10
gozi_ifsb1500

Malware Config

Extracted

Family

gozi_ifsb

Botnet

1500

C2

todo.faroin.at

apr.intoolkom.at

r23cirt55ysvtdvl.onion

kas.kargoapp.at

gtk5.yaronav.at

io.feen007.at

l46t3vgvmtx5wxe6.onion

v3.navialpo.com

pop.biopiof.at

free.monotreener.com

sam.larenot.at

app.flashgameo.at
Attributes
  • exe_type

    worker

  • server_id

    580

rsa_pubkey.plain
serpent.plain

Targets

    • Target

      e110000.dll

    • Size

      240KB

    • MD5

      f3ae979c0adf0cd33877d94b74099134

    • SHA1

      1d9e8b4048e8933fd26b4248bacdb8e96da62cdf

    • SHA256

      72ebdd59699fd705efba6cf5f171f09a7c305a4b69e863d8183e3fdf00dc090b

    • SHA512

      fecc7fc1c6f4f3f12716a989da3dded68cb45a14bf5db3c7fe52f79af39e45ae4e65b4088246c3f69385585e024d2ccb2c4cc9fba768e9fc15fbf01cd511bf8b

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks