Analysis
-
max time kernel
71s -
max time network
26s -
platform
windows7_x64 -
resource
win7-en-20211208 -
submitted
02/02/2022, 10:10
Static task
static1
Behavioral task
behavioral1
Sample
vozuxigapemor vipikagasu.exe
Resource
win7-en-20211208
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
vozuxigapemor vipikagasu.exe
Resource
win10v2004-en-20220113
0 signatures
0 seconds
General
-
Target
vozuxigapemor vipikagasu.exe
-
Size
213KB
-
MD5
1fb95166dda235cb6e5279db1b72722a
-
SHA1
d32fa44ff6090aff739ce5ad471245bdb9a65a72
-
SHA256
eb44943385bba67eff81794d2f5667817a6761f13775149c615a543c0e78186c
-
SHA512
f29202cbbb216925d9226cc79285b88191d0b03b04f32997fd5e11d063455ca4431396071930ce66efd403b869e452281ece1e867f99df4d065c6e8c1e947101
Malware Config
Extracted
Family
gozi_ifsb
Botnet
7579
C2
securesoft.bar
securemega.bar
mediaservice.bar
Attributes
-
base_path
/drew/
-
build
250225
-
exe_type
loader
-
extension
.jlk
-
server_id
50
rsa_pubkey.plain
aes.plain