General
-
Target
960
-
Size
942KB
-
Sample
211025-kl1lqafhe9
-
MD5
96c1d2b40d981eb28aede953cf76e14a
-
SHA1
cbc35b375917f21ab85f989febdf8f6cb73dd7be
-
SHA256
0570fd54d98349e62675cf1e53aa2197ed6c0df811350bfae9f64196b0a49278
-
SHA512
991cf362193adb894f7b83de453174a96b21cfe4791424e6ab142c8c31b54d49dc4a8fd8698c08bd56c0f10104592647333dbf39d92dcd0c7f39edf087010244
Static task
static1
Behavioral task
behavioral1
Sample
960.dll
Resource
win7-en-20211014
Malware Config
Extracted
gozi_ifsb
8899
msn.com/mail
realitystorys.com
outlook.com/signup
gderrrpololo.net
-
build
260212
-
dga_season
10
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
960
-
Size
942KB
-
MD5
96c1d2b40d981eb28aede953cf76e14a
-
SHA1
cbc35b375917f21ab85f989febdf8f6cb73dd7be
-
SHA256
0570fd54d98349e62675cf1e53aa2197ed6c0df811350bfae9f64196b0a49278
-
SHA512
991cf362193adb894f7b83de453174a96b21cfe4791424e6ab142c8c31b54d49dc4a8fd8698c08bd56c0f10104592647333dbf39d92dcd0c7f39edf087010244
-
Blocklisted process makes network request
-