General
-
Target
gozi.payload-disk
-
Size
43KB
-
Sample
220323-cvvg3aeaa4
-
MD5
3cc9a5a6ebb76427c9dd0b84dd7788c5
-
SHA1
4c92cc45117c1c0a869de228b486ba0d1d3076f3
-
SHA256
695db7129895c6845ae5a49b6d5754654a21921008213b7ce83dc57b65fc8daf
-
SHA512
03bb93b0c2b10614629f94bf7a64795235886a5c9bcca182bfac1a16c88e9998782f89af18c9d043c963e574f98b09423536833c25e700a2f501ebe36e07fd84
Behavioral task
behavioral1
Sample
gozi.dll
Resource
win7-20220311-en
Behavioral task
behavioral2
Sample
gozi.dll
Resource
win10v2004-20220310-en
Malware Config
Extracted
gozi_ifsb
7626
buredom.top
linkspremium.ru
premiumlists.ru
-
base_path
/drew/
-
build
250225
-
exe_type
loader
-
extension
.jlk
-
server_id
50
Targets
-
-
Target
gozi.payload-disk
-
Size
43KB
-
MD5
3cc9a5a6ebb76427c9dd0b84dd7788c5
-
SHA1
4c92cc45117c1c0a869de228b486ba0d1d3076f3
-
SHA256
695db7129895c6845ae5a49b6d5754654a21921008213b7ce83dc57b65fc8daf
-
SHA512
03bb93b0c2b10614629f94bf7a64795235886a5c9bcca182bfac1a16c88e9998782f89af18c9d043c963e574f98b09423536833c25e700a2f501ebe36e07fd84
Score1/10 -