General

  • Target

    237ddc60000.dll

  • Size

    231KB

  • Sample

    220215-s22gyshgem

  • MD5

    634ba554b91d0d6323f9372de126bc16

  • SHA1

    7755e7ac7dd6c0862ca7536bcf2ddf07bfa2503f

  • SHA256

    a64557709ed6caf4e2397ee89cddf139b5319f34d14a740a58958db9773a852e

  • SHA512

    957b248f16c064eb23b82c5419ead8913f50fe2d32e77d7b31d549adb78cd6a722c9688af5684b042866156c61c469d1e55e32b886d8231df91961e3357d1855

Score
10/10

Malware Config

Extracted

Family

gozi_ifsb

Botnet

3000

C2

46.21.153.215

46.21.153.220

46.21.153.233

193.27.14.211

Attributes
  • base_path

    /images/

  • exe_type

    worker

  • extension

    .avi

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    • Target

      237ddc60000.dll

    • Size

      231KB

    • MD5

      634ba554b91d0d6323f9372de126bc16

    • SHA1

      7755e7ac7dd6c0862ca7536bcf2ddf07bfa2503f

    • SHA256

      a64557709ed6caf4e2397ee89cddf139b5319f34d14a740a58958db9773a852e

    • SHA512

      957b248f16c064eb23b82c5419ead8913f50fe2d32e77d7b31d549adb78cd6a722c9688af5684b042866156c61c469d1e55e32b886d8231df91961e3357d1855

    Score
    4/10

MITRE ATT&CK Matrix

Tasks