General
-
Target
5bbef6674502e6b18ae2387547264de1c817cabf244fb7e5d67444e2e76a952a
-
Size
209KB
-
Sample
220201-mcv1zscgcn
-
MD5
adc5821d5060d66a5b7a98fa4a78b99d
-
SHA1
5564bd9c7aa495d63f014e8a6d98d05f07814b63
-
SHA256
5bbef6674502e6b18ae2387547264de1c817cabf244fb7e5d67444e2e76a952a
-
SHA512
e53067833c762df9ce7d4a7761eb21efd9ca0afe92d3a06e829922c7398500f9dc0f56b8957f9a3703c11d823e0576e1583993b5956f1d61b50045447827d4a1
Behavioral task
behavioral1
Sample
5bbef6674502e6b18ae2387547264de1c817cabf244fb7e5d67444e2e76a952a.dll
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
5bbef6674502e6b18ae2387547264de1c817cabf244fb7e5d67444e2e76a952a.dll
Resource
win10v2004-en-20220112
Malware Config
Extracted
gozi_ifsb
10003
127.0.0.1
-
build
214711
-
dga_base_url
z1.zedo.com/robots.txt
-
dga_crc
0xf24ca29e
-
exe_type
worker
-
server_id
12
Targets
-
-
Target
5bbef6674502e6b18ae2387547264de1c817cabf244fb7e5d67444e2e76a952a
-
Size
209KB
-
MD5
adc5821d5060d66a5b7a98fa4a78b99d
-
SHA1
5564bd9c7aa495d63f014e8a6d98d05f07814b63
-
SHA256
5bbef6674502e6b18ae2387547264de1c817cabf244fb7e5d67444e2e76a952a
-
SHA512
e53067833c762df9ce7d4a7761eb21efd9ca0afe92d3a06e829922c7398500f9dc0f56b8957f9a3703c11d823e0576e1583993b5956f1d61b50045447827d4a1
Score8/10-
Sets service image path in registry
-