General
-
Target
0425e108d2f7134e8cfc0be2042b2c517b0202b9114d339ab607d08ad20719ba
-
Size
215KB
-
Sample
220527-1x73yaacgp
-
MD5
2e0e40c9dddc80de6f6187a8ab3e5f8c
-
SHA1
bf819e40f3608610b3dae2a11ef9e7ad93c11bb2
-
SHA256
0425e108d2f7134e8cfc0be2042b2c517b0202b9114d339ab607d08ad20719ba
-
SHA512
ad0d1f26137854432654d62cf7b916202d84fe7ea8c059b37514027cb89f72e6498f4b9ea98ecac59ccf3619eb1b4a954c1cc83d0a9e7e78c7f7d3af1ac17979
Static task
static1
Behavioral task
behavioral1
Sample
0425e108d2f7134e8cfc0be2042b2c517b0202b9114d339ab607d08ad20719ba.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
215165
Extracted
gozi_ifsb
3153
biesbetiop.com
kircherche.com
toforemedi.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
0425e108d2f7134e8cfc0be2042b2c517b0202b9114d339ab607d08ad20719ba
-
Size
215KB
-
MD5
2e0e40c9dddc80de6f6187a8ab3e5f8c
-
SHA1
bf819e40f3608610b3dae2a11ef9e7ad93c11bb2
-
SHA256
0425e108d2f7134e8cfc0be2042b2c517b0202b9114d339ab607d08ad20719ba
-
SHA512
ad0d1f26137854432654d62cf7b916202d84fe7ea8c059b37514027cb89f72e6498f4b9ea98ecac59ccf3619eb1b4a954c1cc83d0a9e7e78c7f7d3af1ac17979
-