General
-
Target
a4ce38a54fe2038ab9de5292b4ec63f1c76562803206b8e2149df3bb21207fcc
-
Size
198KB
-
Sample
220520-rab8bafca3
-
MD5
c87ef7d40d7206bab31cca95d067a643
-
SHA1
1d4d8be48465cbd897a2277703a0ab77f5ab0752
-
SHA256
a4ce38a54fe2038ab9de5292b4ec63f1c76562803206b8e2149df3bb21207fcc
-
SHA512
2485838e8dfa84b97868a969c98945ce2c0b60c47a0ea40e30e598fcdbd80d178c59ceb5b4be0054d5b4c3e2f3ae0e012978c69df7e7beb227973c52e7b578d0
Static task
static1
Behavioral task
behavioral1
Sample
wellwisher.dll
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
3300
cdn.arsis.at/api1
-
build
250152
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
730
Targets
-
-
Target
wellwisher.vcf
-
Size
286KB
-
MD5
4549708f2a9c381890a5558b2036bc49
-
SHA1
62309679b02f05d42bc05cf6c1f522e4837f4f04
-
SHA256
ae618e94c64b10307de3193efe693ba4cf0ea371a662038f705ba00779ad4f40
-
SHA512
11e0453fef0e061b93f6f7f9f2e956dbef5ff09781da602387e31fcab52b477b2827b07f528551fefbc7dd65b6ca8294f24c7751a5bdf58f341aa05ad78aef8c
-