General

  • Target

    9f0000.dll

  • Size

    43KB

  • Sample

    220215-svrdeagdf6

  • MD5

    b752e675e6a8f5608e3edf722e80978f

  • SHA1

    26dafde0e91b71636b17510bc0534d6d6b353b77

  • SHA256

    852f3d58b0bce11b1ab5017d215b9d805f02ac8e932a39558c75f2166dd7d488

  • SHA512

    94f2fa2ca390c3d870ad91d5dd12342aff0651f241074da02531cd35dc2b7ee99afcbcbe8caeef008d81754dd79b4557726b02d259f0988164b06fa6af20bf05

Score
10/10

Malware Config

Extracted

Family

gozi_ifsb

Botnet

4000

C2

config.edge.skype.com

192.236.147.253

Attributes
  • base_path

    /source/

  • build

    250225

  • exe_type

    loader

  • extension

    .jbl

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    • Target

      9f0000.dll

    • Size

      43KB

    • MD5

      b752e675e6a8f5608e3edf722e80978f

    • SHA1

      26dafde0e91b71636b17510bc0534d6d6b353b77

    • SHA256

      852f3d58b0bce11b1ab5017d215b9d805f02ac8e932a39558c75f2166dd7d488

    • SHA512

      94f2fa2ca390c3d870ad91d5dd12342aff0651f241074da02531cd35dc2b7ee99afcbcbe8caeef008d81754dd79b4557726b02d259f0988164b06fa6af20bf05

    Score
    4/10

MITRE ATT&CK Enterprise v6

Tasks