General
-
Target
gozi.payload-disk
-
Size
43KB
-
Sample
220318-jt2y3sghdm
-
MD5
a62dfacb00cc2b502154e3b77e35dd6c
-
SHA1
c5482a53d940c22af20bb475364d8e4bce187b81
-
SHA256
ab2fad795e531fbfc0c3ebef645522fdc7fa058d905634e5512987348ec79783
-
SHA512
e6784779933dc0008ce9721fab13fbc0326d7730a4b49ba991ef0c275475594a8c73089977ee36f5951515c405794f6bb9dbae7a5231176a7ebcb003872aec86
Behavioral task
behavioral1
Sample
gozi.dll
Resource
win7-20220310-en
Behavioral task
behavioral2
Sample
gozi.dll
Resource
win10v2004-20220310-en
Malware Config
Extracted
gozi_ifsb
7625
sistemliner.top
linkspremium.ru
premiumlists.ru
-
base_path
/drew/
-
build
250225
-
exe_type
loader
-
extension
.jlk
-
server_id
50
Targets
-
-
Target
gozi.payload-disk
-
Size
43KB
-
MD5
a62dfacb00cc2b502154e3b77e35dd6c
-
SHA1
c5482a53d940c22af20bb475364d8e4bce187b81
-
SHA256
ab2fad795e531fbfc0c3ebef645522fdc7fa058d905634e5512987348ec79783
-
SHA512
e6784779933dc0008ce9721fab13fbc0326d7730a4b49ba991ef0c275475594a8c73089977ee36f5951515c405794f6bb9dbae7a5231176a7ebcb003872aec86
Score1/10 -