General
-
Target
what.exe
-
Size
214KB
-
Sample
220202-l213vshfep
-
MD5
d64a7ea872340bf2224c4064a84318c6
-
SHA1
e8d6d805bb18e87533296676782ffe646721e32d
-
SHA256
db48576c5b16b91631ac85ee59f5c283509ba622abef591e42cc24212f1c57f7
-
SHA512
e159b5cc8e80265615c5c84bd741b7263a6e4b9e13a95966a79e489b535c7e664930d36f347411d3a07bba70ac032cc13e2c7aaddb9898f82619cd075fdf0ad0
Static task
static1
Behavioral task
behavioral1
Sample
what.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
what.exe
Resource
win10v2004-en-20220113
Malware Config
Extracted
gozi_ifsb
7579
securesoft.bar
securemega.bar
mediaservice.bar
-
base_path
/drew/
-
build
250225
-
exe_type
loader
-
extension
.jlk
-
server_id
50
Targets
-
-
Target
what.exe
-
Size
214KB
-
MD5
d64a7ea872340bf2224c4064a84318c6
-
SHA1
e8d6d805bb18e87533296676782ffe646721e32d
-
SHA256
db48576c5b16b91631ac85ee59f5c283509ba622abef591e42cc24212f1c57f7
-
SHA512
e159b5cc8e80265615c5c84bd741b7263a6e4b9e13a95966a79e489b535c7e664930d36f347411d3a07bba70ac032cc13e2c7aaddb9898f82619cd075fdf0ad0
-