General
-
Target
8a3d8b5dd1f2022eaf5a9b7232aaab1e.dll
-
Size
1.2MB
-
Sample
220315-j7q4qsahfj
-
MD5
8a3d8b5dd1f2022eaf5a9b7232aaab1e
-
SHA1
9107b239f7365d6e30416f28bcd8edbd5d7ce632
-
SHA256
388022f82cf14f03e13aac05209d02e26685ae97c45077b64bdbab3e7fa44f17
-
SHA512
83af65f3b007ec6304f5b1af5d0d9a1fcadc7046bb1f785c04c110d80b6a1db82aec0adb3ad8e2dd4222980bf4391314cb07539ae4af141e014f7a20d3c5b908
Static task
static1
Behavioral task
behavioral1
Sample
8a3d8b5dd1f2022eaf5a9b7232aaab1e.dll
Resource
win7-20220310-en
Malware Config
Extracted
gozi_ifsb
7623
atmosphera.top
linkspremium.ru
premiumlists.ru
-
base_path
/drew/
-
build
250225
-
exe_type
loader
-
extension
.jlk
-
server_id
50
Targets
-
-
Target
8a3d8b5dd1f2022eaf5a9b7232aaab1e.dll
-
Size
1.2MB
-
MD5
8a3d8b5dd1f2022eaf5a9b7232aaab1e
-
SHA1
9107b239f7365d6e30416f28bcd8edbd5d7ce632
-
SHA256
388022f82cf14f03e13aac05209d02e26685ae97c45077b64bdbab3e7fa44f17
-
SHA512
83af65f3b007ec6304f5b1af5d0d9a1fcadc7046bb1f785c04c110d80b6a1db82aec0adb3ad8e2dd4222980bf4391314cb07539ae4af141e014f7a20d3c5b908
-
suricata: ET MALWARE Ursnif Variant CnC Beacon - URI Struct M2 (_2F)
suricata: ET MALWARE Ursnif Variant CnC Beacon - URI Struct M2 (_2F)
-