General
-
Target
05eca064509e40f9d0a4780160a81e7ed82af85e4a35c7b67c07ae75164b21f1
-
Size
215KB
-
Sample
220527-trk8nacdc2
-
MD5
798207ec25bdc0f4f0c2629eba47fe63
-
SHA1
c239dbc460b0cb2bafdad3bf548e6da57d990530
-
SHA256
05eca064509e40f9d0a4780160a81e7ed82af85e4a35c7b67c07ae75164b21f1
-
SHA512
f61e91704e442106bd997023551091369c6af3ee9d5386d32f49973a6b38ff4be1f89ecddad6083e2917ef0471dee25fb10d7fd1bb396b96fe29e180543ab88d
Static task
static1
Behavioral task
behavioral1
Sample
05eca064509e40f9d0a4780160a81e7ed82af85e4a35c7b67c07ae75164b21f1.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
215165
Extracted
gozi_ifsb
3153
biesbetiop.com
kircherche.com
toforemedi.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
05eca064509e40f9d0a4780160a81e7ed82af85e4a35c7b67c07ae75164b21f1
-
Size
215KB
-
MD5
798207ec25bdc0f4f0c2629eba47fe63
-
SHA1
c239dbc460b0cb2bafdad3bf548e6da57d990530
-
SHA256
05eca064509e40f9d0a4780160a81e7ed82af85e4a35c7b67c07ae75164b21f1
-
SHA512
f61e91704e442106bd997023551091369c6af3ee9d5386d32f49973a6b38ff4be1f89ecddad6083e2917ef0471dee25fb10d7fd1bb396b96fe29e180543ab88d
-