General
-
Target
61ee6edf7de65.dll
-
Size
95KB
-
Sample
220323-ngp6zahdal
-
MD5
b6f0fc5638a110abac1a54805f77e786
-
SHA1
f7eff5f67b1b794759ec0ba9b0d6a3bd5cd59bfe
-
SHA256
06e26611fe5cf2fb04cfa894f9cb24edc0ab8306cf42c979b2c776372d07d1cf
-
SHA512
b92f671821476bb041bd96a38b1ff300365d12d2fb6bec6266cfbd0f7613a3551807ddc3887ebee13911843322c3274af2a65ca1c38291b45506b433cccd15a8
Static task
static1
Behavioral task
behavioral1
Sample
61ee6edf7de65.dll
Resource
win7-20220311-en
Malware Config
Extracted
gozi_ifsb
20000
giporedtrip.at
habpfans.at
-
base_path
/drew/
-
build
260224
-
exe_type
loader
-
extension
.jlk
-
server_id
50
Targets
-
-
Target
61ee6edf7de65.dll
-
Size
95KB
-
MD5
b6f0fc5638a110abac1a54805f77e786
-
SHA1
f7eff5f67b1b794759ec0ba9b0d6a3bd5cd59bfe
-
SHA256
06e26611fe5cf2fb04cfa894f9cb24edc0ab8306cf42c979b2c776372d07d1cf
-
SHA512
b92f671821476bb041bd96a38b1ff300365d12d2fb6bec6266cfbd0f7613a3551807ddc3887ebee13911843322c3274af2a65ca1c38291b45506b433cccd15a8
-
suricata: ET MALWARE Ursnif Variant CnC Beacon - URI Struct M2 (_2F)
suricata: ET MALWARE Ursnif Variant CnC Beacon - URI Struct M2 (_2F)
-
Blocklisted process makes network request
-