General
-
Target
6.tar.dll
-
Size
392KB
-
Sample
210920-qz3acsghfn
-
MD5
9a024750ca83441f6a1eb0357207f832
-
SHA1
98451fe991746d4fb0ecade9a0bd318ba4eb9b6a
-
SHA256
2e5118d15a18ae852bf94d91707ff634d9d8354fef492f5c4e1c46b9cf96184c
-
SHA512
ef98bac4edbe11e4710d76774c692f8a9cae52048e49cfb73db74291a408edf93ef5cb5c5eb55e6f9ba51ee10820d2bd560aed917a4eafef9f29ee4d8d0e2d69
Static task
static1
Behavioral task
behavioral1
Sample
6.tar.dll
Resource
win7-en-20210916
Malware Config
Extracted
gozi_ifsb
8877
outlook.com
jkdoiloooooo1.nl
nkdlooooalksloooo.nl
-
build
250212
-
dga_season
10
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
6.tar.dll
-
Size
392KB
-
MD5
9a024750ca83441f6a1eb0357207f832
-
SHA1
98451fe991746d4fb0ecade9a0bd318ba4eb9b6a
-
SHA256
2e5118d15a18ae852bf94d91707ff634d9d8354fef492f5c4e1c46b9cf96184c
-
SHA512
ef98bac4edbe11e4710d76774c692f8a9cae52048e49cfb73db74291a408edf93ef5cb5c5eb55e6f9ba51ee10820d2bd560aed917a4eafef9f29ee4d8d0e2d69
-
suricata: ET MALWARE Ursnif Variant CnC Beacon - URI Struct M1 (_2B)
suricata: ET MALWARE Ursnif Variant CnC Beacon - URI Struct M1 (_2B)
-
Blocklisted process makes network request
-