General
-
Target
01447f383253a3b4f66a1c95169026599871e0a0d3f7a712780017b4305b3e12
-
Size
64KB
-
Sample
220201-m5r5ssdgd6
-
MD5
7a06a4a9a8559fc82224354d4f335174
-
SHA1
adf5f86c9f7ddd21f019fa6518b00c79a5451253
-
SHA256
01447f383253a3b4f66a1c95169026599871e0a0d3f7a712780017b4305b3e12
-
SHA512
a3eb973a8c0c9c2dcf70d7332c07f792ba6fcfe9a0cb3e5ed18f8a3069ce067bb8a83f59de7d4bd4a366ec45bf8cc5e05cadf0711fe538bad495be312ad955d6
Behavioral task
behavioral1
Sample
01447f383253a3b4f66a1c95169026599871e0a0d3f7a712780017b4305b3e12.dll
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
01447f383253a3b4f66a1c95169026599871e0a0d3f7a712780017b4305b3e12.dll
Resource
win10v2004-en-20220113
Malware Config
Extracted
gozi_ifsb
8877
outlook.com
ghjakappoppepeodkd.website
hteadclsspdkmdasd.live
-
base_path
/jdraw/
-
build
250206
-
dga_season
10
-
exe_type
loader
-
extension
.crw
-
server_id
12
Targets
-
-
Target
01447f383253a3b4f66a1c95169026599871e0a0d3f7a712780017b4305b3e12
-
Size
64KB
-
MD5
7a06a4a9a8559fc82224354d4f335174
-
SHA1
adf5f86c9f7ddd21f019fa6518b00c79a5451253
-
SHA256
01447f383253a3b4f66a1c95169026599871e0a0d3f7a712780017b4305b3e12
-
SHA512
a3eb973a8c0c9c2dcf70d7332c07f792ba6fcfe9a0cb3e5ed18f8a3069ce067bb8a83f59de7d4bd4a366ec45bf8cc5e05cadf0711fe538bad495be312ad955d6
Score8/10-
Sets service image path in registry
-