General
-
Target
image.txt
-
Size
351KB
-
Sample
220210-j6he7sgffr
-
MD5
e5c6442649340b5a0778902ecfbe0cec
-
SHA1
368859c657c58874ab97167396feaa729304f881
-
SHA256
4eae1c5ebdb7b2021913b37477077bde0177579b6f8d43a49bd8a202b45657f4
-
SHA512
588b3b063212f8487248c0b467e75e145e87f99ab110a61c52463b4af20262597da6a91366f1e2287bde7201d92cc1e34fb1043280d2cfddc950ec09e755c57c
Static task
static1
Behavioral task
behavioral1
Sample
image.dll
Resource
win7-en-20211208
Malware Config
Extracted
gozi_ifsb
7613
interlines.top
interlines.space
linkspremium.ru
premiumlists.ru
-
base_path
/drew/
-
build
250225
-
exe_type
loader
-
extension
.jlk
-
server_id
50
Targets
-
-
Target
image.txt
-
Size
351KB
-
MD5
e5c6442649340b5a0778902ecfbe0cec
-
SHA1
368859c657c58874ab97167396feaa729304f881
-
SHA256
4eae1c5ebdb7b2021913b37477077bde0177579b6f8d43a49bd8a202b45657f4
-
SHA512
588b3b063212f8487248c0b467e75e145e87f99ab110a61c52463b4af20262597da6a91366f1e2287bde7201d92cc1e34fb1043280d2cfddc950ec09e755c57c
-
suricata: ET MALWARE Ursnif Variant CnC Beacon - URI Struct M1 (_2B)
suricata: ET MALWARE Ursnif Variant CnC Beacon - URI Struct M1 (_2B)
-
suricata: ET MALWARE Ursnif Variant CnC Beacon - URI Struct M2 (_2F)
suricata: ET MALWARE Ursnif Variant CnC Beacon - URI Struct M2 (_2F)
-