General
-
Target
61485efd6621c.dll
-
Size
392KB
-
Sample
210920-massvadff3
-
MD5
242ca0c987f3b4ab2083131df6435527
-
SHA1
b74a83fff39fe91097e502ae214e8e9ce998e4b1
-
SHA256
5657bb527b62a7a83fb6542f2f80f50d0574dfa0b26a26ff26deb9029687b19a
-
SHA512
967a1b228f931691e5a37bd0398c6c102810824b1b1f6fba23e49fe5349ea45e64de7412e621bbc8db9b0105779cbbd0f964078a4135b5cbe0401a42a0a8c494
Static task
static1
Behavioral task
behavioral1
Sample
61485efd6621c.dll
Resource
win7-en-20210916
Malware Config
Extracted
gozi_ifsb
8877
outlook.com
jkdoiloooooo1.nl
nkdlooooalksloooo.nl
-
build
250212
-
dga_season
10
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
61485efd6621c.dll
-
Size
392KB
-
MD5
242ca0c987f3b4ab2083131df6435527
-
SHA1
b74a83fff39fe91097e502ae214e8e9ce998e4b1
-
SHA256
5657bb527b62a7a83fb6542f2f80f50d0574dfa0b26a26ff26deb9029687b19a
-
SHA512
967a1b228f931691e5a37bd0398c6c102810824b1b1f6fba23e49fe5349ea45e64de7412e621bbc8db9b0105779cbbd0f964078a4135b5cbe0401a42a0a8c494
-
Blocklisted process makes network request
-