General
-
Target
4b2b948fcb9bc235b943cd5987d7ab037d408b4ce62e7529f20b901e40730294
-
Size
55KB
-
Sample
220201-mhbjjachan
-
MD5
7f7c04ba7370429453374297625a5477
-
SHA1
9af364f17f3e7250763416036e1b336bcdfdde10
-
SHA256
4b2b948fcb9bc235b943cd5987d7ab037d408b4ce62e7529f20b901e40730294
-
SHA512
93650df075068c7514d2209b45bf414ec10bfba9c3512e06b0179754faea277fab58ebad74d17be8c97a400363da84b94e89b52b522a026b6996eac8e58cf03d
Behavioral task
behavioral1
Sample
4b2b948fcb9bc235b943cd5987d7ab037d408b4ce62e7529f20b901e40730294.dll
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
4b2b948fcb9bc235b943cd5987d7ab037d408b4ce62e7529f20b901e40730294.dll
Resource
win10v2004-en-20220112
Malware Config
Extracted
gozi_ifsb
8877
outlook.com
jkdoiloooooo1.nl
nkdlooooalksloooo.nl
-
base_path
/hjskllooo/
-
build
250212
-
dga_season
10
-
exe_type
loader
-
extension
.lko
-
server_id
12
Targets
-
-
Target
4b2b948fcb9bc235b943cd5987d7ab037d408b4ce62e7529f20b901e40730294
-
Size
55KB
-
MD5
7f7c04ba7370429453374297625a5477
-
SHA1
9af364f17f3e7250763416036e1b336bcdfdde10
-
SHA256
4b2b948fcb9bc235b943cd5987d7ab037d408b4ce62e7529f20b901e40730294
-
SHA512
93650df075068c7514d2209b45bf414ec10bfba9c3512e06b0179754faea277fab58ebad74d17be8c97a400363da84b94e89b52b522a026b6996eac8e58cf03d
Score8/10-
Sets service image path in registry
-