General
-
Target
2d3bd97390d2b235ee6a825b74915a50a4a1d264b4ab520e9eb8fee2b4e44206
-
Size
56KB
-
Sample
220201-mqa8qsdee3
-
MD5
b9d4d64d1e8c895d3e4400bdcfd196b6
-
SHA1
2fa42074d8efa9f5a5e080d61485f13bd8ee285f
-
SHA256
2d3bd97390d2b235ee6a825b74915a50a4a1d264b4ab520e9eb8fee2b4e44206
-
SHA512
274a0673de941a1a38c283a940cce87669eaea0da68f6f38638fbe7bc9f83acc1e0b17ff620706f7b0c72bfc2118a0f700fd1f1351f45af6c8ed4b4766873d9f
Behavioral task
behavioral1
Sample
2d3bd97390d2b235ee6a825b74915a50a4a1d264b4ab520e9eb8fee2b4e44206.dll
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
2d3bd97390d2b235ee6a825b74915a50a4a1d264b4ab520e9eb8fee2b4e44206.dll
Resource
win10v2004-en-20220113
Malware Config
Extracted
gozi_ifsb
1500
authd.feronok.com
raw.pablowilliano.at
-
build
250188
-
exe_type
loader
-
server_id
580
Targets
-
-
Target
2d3bd97390d2b235ee6a825b74915a50a4a1d264b4ab520e9eb8fee2b4e44206
-
Size
56KB
-
MD5
b9d4d64d1e8c895d3e4400bdcfd196b6
-
SHA1
2fa42074d8efa9f5a5e080d61485f13bd8ee285f
-
SHA256
2d3bd97390d2b235ee6a825b74915a50a4a1d264b4ab520e9eb8fee2b4e44206
-
SHA512
274a0673de941a1a38c283a940cce87669eaea0da68f6f38638fbe7bc9f83acc1e0b17ff620706f7b0c72bfc2118a0f700fd1f1351f45af6c8ed4b4766873d9f
Score8/10-
Sets service image path in registry
-