General
-
Target
tar.dll
-
Size
1.2MB
-
Sample
211007-sa76esceg4
-
MD5
1fe42a1e3803c0080a8377531a556dca
-
SHA1
bf36217993523e9e2caeab574a71d55c08ba9e2d
-
SHA256
fed0ceb220d653d828440b9858d7cddce0a38afaf368f3dede8c1a9942a9cfac
-
SHA512
c07f2060bdc1060ed7a1807da4409c010e97063b2c4d55c6f03c887ecbe50a2307b8bd5a717df1378d96f912297b588fb7222a3f7317001eb13f9606af1e28ea
Static task
static1
Behavioral task
behavioral1
Sample
tar.dll
Resource
win7-en-20210920
Malware Config
Extracted
gozi_ifsb
8899
msn.com/login
vloderuniok.website
gloderuniok.website
-
build
260212
-
dga_season
10
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
tar.dll
-
Size
1.2MB
-
MD5
1fe42a1e3803c0080a8377531a556dca
-
SHA1
bf36217993523e9e2caeab574a71d55c08ba9e2d
-
SHA256
fed0ceb220d653d828440b9858d7cddce0a38afaf368f3dede8c1a9942a9cfac
-
SHA512
c07f2060bdc1060ed7a1807da4409c010e97063b2c4d55c6f03c887ecbe50a2307b8bd5a717df1378d96f912297b588fb7222a3f7317001eb13f9606af1e28ea
-
Blocklisted process makes network request
-