General

  • Target

    5271651003039744.zip

  • Size

    254KB

  • Sample

    220216-sy9ddsbhb7

  • MD5

    2ac1f9c1eeeb72c9c8fe7e31244550f8

  • SHA1

    082acf9bf571093afebca42d335147e0e33a8f1b

  • SHA256

    6858a70dc31fa20003a6b4aa3afe3a0f0c2eed83aba99eb8c033945502c0e5cf

  • SHA512

    4c0d4612855c7d905c88098959a8f4af6790aad50fe7c98107ebcd52eae4fd266f21515c6fcd8413274b4fbbf31045eabb78261606ed7266705ac94502f6a4fc

Malware Config

Extracted

Family

gozi_ifsb

Botnet

7612

C2

securezzalink.top

securezzalink.space

linkspremium.ru

premiumlists.ru

Attributes
  • base_path

    /drew/

  • build

    250225

  • exe_type

    loader

  • extension

    .jlk

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    • Target

      00a6659355525272bce8845b6db89d2d9f89e6b96bd5379292ebfebf9cbbe68e

    • Size

      490KB

    • MD5

      08bd4c8bd321cb906c9275d0231f57b3

    • SHA1

      08f3b0f78e0c26898eca40792d499162b13a6036

    • SHA256

      00a6659355525272bce8845b6db89d2d9f89e6b96bd5379292ebfebf9cbbe68e

    • SHA512

      15023399a0df8bb361aeac6795553c19e1fe7f8f80d1386d48bfb1cd280741349e8e0eeb0cd57bf1b044e0aa5984415afff4905fff4bb2ffc369c418ed1637dd

MITRE ATT&CK Enterprise v6

Tasks