General
-
Target
readme.exe
-
Size
1.0MB
-
Sample
220318-mz1jzshce2
-
MD5
a88eb1440652a0e919ae2a9a8dac1dae
-
SHA1
4afb78598c94f5a1078a1cf3f30f3ed4495f31d6
-
SHA256
2cb2f5884d3c1a02febe53b8c8997d070a4c54dc75628714f829b894cf1c73a7
-
SHA512
c142ebed7ac4162b1001482ca16a60efada69a04e4457c2fca0cc5f449268cc2b94becdf9a09d4b6a844cb0ae5be1055741849b1437ceebeeead5e678b63b07f
Static task
static1
Behavioral task
behavioral1
Sample
readme.dll
Resource
win7-20220310-en
Behavioral task
behavioral2
Sample
readme.dll
Resource
win10v2004-en-20220113
Malware Config
Extracted
gozi_ifsb
7624
atmospheri.top
linkspremium.ru
premiumlists.ru
-
base_path
/drew/
-
build
250225
-
exe_type
loader
-
extension
.jlk
-
server_id
50
Targets
-
-
Target
readme.exe
-
Size
1.0MB
-
MD5
a88eb1440652a0e919ae2a9a8dac1dae
-
SHA1
4afb78598c94f5a1078a1cf3f30f3ed4495f31d6
-
SHA256
2cb2f5884d3c1a02febe53b8c8997d070a4c54dc75628714f829b894cf1c73a7
-
SHA512
c142ebed7ac4162b1001482ca16a60efada69a04e4457c2fca0cc5f449268cc2b94becdf9a09d4b6a844cb0ae5be1055741849b1437ceebeeead5e678b63b07f
-
Gozi_JJ_loader
-
Gozi_JJ_loader_0
-