General
-
Target
ed7d22c2f922df466fda6914eb8b93cc27c81f16a60b7aa7eac9ca033014c22c
-
Size
213KB
-
Sample
220516-p2sm9scbe3
-
MD5
8a77c85863b761ba90af4b78d3d01ceb
-
SHA1
bea36e75b477db2544d14b093e4f60847a9df2da
-
SHA256
ed7d22c2f922df466fda6914eb8b93cc27c81f16a60b7aa7eac9ca033014c22c
-
SHA512
6bbb553a8005b58ef1e91addb8c557f5f5e23d495f8fbcfc1982f26ae385a9f870272b3fe77ac86c268300db758cab903882791d5730d4d2828902cc4213a248
Static task
static1
Behavioral task
behavioral1
Sample
ed7d22c2f922df466fda6914eb8b93cc27c81f16a60b7aa7eac9ca033014c22c.dll
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
2200
api10.laptok.at/api1
-
build
250155
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
730
Targets
-
-
Target
ed7d22c2f922df466fda6914eb8b93cc27c81f16a60b7aa7eac9ca033014c22c
-
Size
213KB
-
MD5
8a77c85863b761ba90af4b78d3d01ceb
-
SHA1
bea36e75b477db2544d14b093e4f60847a9df2da
-
SHA256
ed7d22c2f922df466fda6914eb8b93cc27c81f16a60b7aa7eac9ca033014c22c
-
SHA512
6bbb553a8005b58ef1e91addb8c557f5f5e23d495f8fbcfc1982f26ae385a9f870272b3fe77ac86c268300db758cab903882791d5730d4d2828902cc4213a248
-
suricata: ET MALWARE Ursnif Variant CnC Beacon - URI Struct M2 (_2F)
suricata: ET MALWARE Ursnif Variant CnC Beacon - URI Struct M2 (_2F)
-