General
-
Target
b938df3257c4c0f916955b0a689dd280.dll
-
Size
942KB
-
Sample
211026-swwphshgg5
-
MD5
b938df3257c4c0f916955b0a689dd280
-
SHA1
8058abf1aa17283ab8c6fe65e303011f46cda884
-
SHA256
79ab62103a0d4eb9fe40aa94aa9d2f2f669c1bcf29119930ede17bb4cd1a9d6c
-
SHA512
80df5775165e17d44374bd8e794ff690ecf5c4ab087977df58d476a180dfdc9babe35e124cac2957448aa2b6904aaf6a297af9584541c438c4a9d582c0f77897
Static task
static1
Behavioral task
behavioral1
Sample
b938df3257c4c0f916955b0a689dd280.dll
Resource
win7-en-20211014
Malware Config
Extracted
gozi_ifsb
8899
msn.com/mail
realitystorys.com
outlook.com/signup
gderrrpololo.net
-
build
260212
-
dga_season
10
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
b938df3257c4c0f916955b0a689dd280.dll
-
Size
942KB
-
MD5
b938df3257c4c0f916955b0a689dd280
-
SHA1
8058abf1aa17283ab8c6fe65e303011f46cda884
-
SHA256
79ab62103a0d4eb9fe40aa94aa9d2f2f669c1bcf29119930ede17bb4cd1a9d6c
-
SHA512
80df5775165e17d44374bd8e794ff690ecf5c4ab087977df58d476a180dfdc9babe35e124cac2957448aa2b6904aaf6a297af9584541c438c4a9d582c0f77897
-
Blocklisted process makes network request
-