General
-
Target
193c641aa9ed7092639694239d0f477f02ab493d3c525917613a13490533b9fd.dll
-
Size
1.0MB
-
Sample
220317-qw18wseee4
-
MD5
034a0ada972701c9e6241243c82798a5
-
SHA1
200ee4388830bbc4640f7f8c2b9eea07b84adc7c
-
SHA256
193c641aa9ed7092639694239d0f477f02ab493d3c525917613a13490533b9fd
-
SHA512
ee6877200452092c2d31faa8d467547afca03a8e2877d903fef32b3a3058092e0daa39a025cd144a91762f6914f68cd4237d5a424df41427016204d57ada69da
Static task
static1
Behavioral task
behavioral1
Sample
193c641aa9ed7092639694239d0f477f02ab493d3c525917613a13490533b9fd.dll
Resource
win7-20220310-en
Behavioral task
behavioral2
Sample
193c641aa9ed7092639694239d0f477f02ab493d3c525917613a13490533b9fd.dll
Resource
win10v2004-en-20220113
Malware Config
Extracted
gozi_ifsb
7624
atmospheri.top
linkspremium.ru
premiumlists.ru
-
base_path
/drew/
-
build
250225
-
exe_type
loader
-
extension
.jlk
-
server_id
50
Targets
-
-
Target
193c641aa9ed7092639694239d0f477f02ab493d3c525917613a13490533b9fd.dll
-
Size
1.0MB
-
MD5
034a0ada972701c9e6241243c82798a5
-
SHA1
200ee4388830bbc4640f7f8c2b9eea07b84adc7c
-
SHA256
193c641aa9ed7092639694239d0f477f02ab493d3c525917613a13490533b9fd
-
SHA512
ee6877200452092c2d31faa8d467547afca03a8e2877d903fef32b3a3058092e0daa39a025cd144a91762f6914f68cd4237d5a424df41427016204d57ada69da
-
Gozi_JJ_loader
-
Gozi_JJ_loader_0
-