Overview

overview

10

Static

static

10

loader_260...71.dll

windows7_x64

1

loader_260...71.dll

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    211127-ajq96aqsjp_pw_infected.zip

  • Size

    38KB

  • Sample

    211202-nb2b2sadg3

  • MD5

    aa7b507a69f9a65fc211cf821bfbbfb2

  • SHA1

    7dd8992663f8eb289eaaedbb52ce37cedc48106b

  • SHA256

    4f0066b3a94a37a1bb9f13d4ad953b45b761635c0dac4418a8524deffa4c2bc0

  • SHA512

    caf220a957e852e60aec5820ca9cf3c3ae509605ec269f300dd06766000ae84bd4ec215c0921b099ea4ef485e2859d71daa40070d5c6471d21edb8021b28be10

Score
10/10
gozi_ifsb8899

Malware Config

Extracted

Family

gozi_ifsb

Botnet

8899

C2

msn.com/login

vloderuniok.website

gloderuniok.website
Attributes
  • build

    260212

  • dga_season

    10

  • exe_type

    loader

  • server_id

    12

rsa_pubkey.plain
serpent.plain

Targets

    • Target

      loader_260212_3ce9df2272bb98916f215be5a0943ed0fc06f72eca3bed2385aacc7c1b4c6071

    • Size

      42KB

    • MD5

      f064bbc17ecabfe4d5122c24f64d1459

    • SHA1

      554e022ea2b52a679da260cf3fd799e90b4fed9e

    • SHA256

      3ce9df2272bb98916f215be5a0943ed0fc06f72eca3bed2385aacc7c1b4c6071

    • SHA512

      73585fac40c4b2046e7612348a3f3e8a78017b069cb05893135f8619394f219efa048d9b07590598207cfa3a9c8cabc53760cb794349d458216a444e80eb817b

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks