General

  • Target

    a560000.dll

  • Size

    256KB

  • Sample

    220329-pthhbshhgr

  • MD5

    0a6d071a17608e1a8f6689a89045f9e8

  • SHA1

    374e2bdf221f930217fc4741a3ae6aab6f2df6c4

  • SHA256

    23a5c9de612ce6a2464263883efb5809e29d8412b1c27866d4c26ea173a3297f

  • SHA512

    d44c9f49d200d485e9fbd28f660a841ffb22b99d62d7ab81a6371e94657945f1084a2e1a5c8f0c1aca9fa42e59715b5f6440c4e9197f1ad89b381f300f07dcf3

Score
10/10

Malware Config

Extracted

Family

gozi_ifsb

Botnet

777999

C2

config.edge.skype.com

67.43.234.14

67.43.234.37

67.43.234.47

Attributes
  • base_path

    /images/

  • exe_type

    worker

  • extension

    .src

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    • Target

      a560000.dll

    • Size

      256KB

    • MD5

      0a6d071a17608e1a8f6689a89045f9e8

    • SHA1

      374e2bdf221f930217fc4741a3ae6aab6f2df6c4

    • SHA256

      23a5c9de612ce6a2464263883efb5809e29d8412b1c27866d4c26ea173a3297f

    • SHA512

      d44c9f49d200d485e9fbd28f660a841ffb22b99d62d7ab81a6371e94657945f1084a2e1a5c8f0c1aca9fa42e59715b5f6440c4e9197f1ad89b381f300f07dcf3

    Score
    1/10

MITRE ATT&CK Matrix

Tasks