Analysis
-
max time kernel
47s -
max time network
146s -
platform
windows7_x64 -
resource
win7-20220414-en -
submitted
24/05/2022, 13:35
Behavioral task
behavioral1
Sample
c05709cd622e7fa92df7b0361506f722548afa44c987594c2d5d9945ad720f17.exe
Resource
win7-20220414-en
0 signatures
0 seconds
General
-
Target
c05709cd622e7fa92df7b0361506f722548afa44c987594c2d5d9945ad720f17.exe
-
Size
249KB
-
MD5
8d0685354de8da460befcb05662431c1
-
SHA1
79eb89217382f50b2311e6287c12b682c35e868c
-
SHA256
c05709cd622e7fa92df7b0361506f722548afa44c987594c2d5d9945ad720f17
-
SHA512
c8f75615971083cd216c969134af48c03c2ef44e3e1f03aa822bd67686a6344b1ec6d38270beda0c745ace27bbade4b1b51e371fad10d9f1c20d4d0953cb18ac
Malware Config
Extracted
Family
gozi_rm3
Attributes
-
build
300904
Signatures
-
description ioc Process Key created \REGISTRY\USER\S-1-5-21-1083475884-596052423-1669053738-1000\Software\Microsoft\Internet Explorer\Main iexplore.exe
Processes
-
C:\Users\Admin\AppData\Local\Temp\c05709cd622e7fa92df7b0361506f722548afa44c987594c2d5d9945ad720f17.exe"C:\Users\Admin\AppData\Local\Temp\c05709cd622e7fa92df7b0361506f722548afa44c987594c2d5d9945ad720f17.exe"1⤵PID:360
-
C:\Program Files\Internet Explorer\iexplore.exe"C:\Program Files\Internet Explorer\iexplore.exe" -Embedding1⤵
- Modifies Internet Explorer settings
PID:592 -
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:592 CREDAT:275457 /prefetch:22⤵PID:1268
-