Analysis
-
max time kernel
39s -
max time network
47s -
platform
windows7_x64 -
resource
win7-20220414-en -
submitted
14/06/2022, 23:36
Static task
static1
Behavioral task
behavioral1
Sample
2c2d936f6efbe8df401a015b7b4f3e3c5438f6542b16615d7d9d63c8523ae331.exe
Resource
win7-20220414-en
0 signatures
0 seconds
General
-
Target
2c2d936f6efbe8df401a015b7b4f3e3c5438f6542b16615d7d9d63c8523ae331.exe
-
Size
149KB
-
MD5
d30de84d1629beebec735a1f082194c3
-
SHA1
d23a909dff8461e1649062fbedc57fd24730bd16
-
SHA256
2c2d936f6efbe8df401a015b7b4f3e3c5438f6542b16615d7d9d63c8523ae331
-
SHA512
5a15430a1f97082953e5ba25baa491ec1d0ad67c1ae49357b6b522824f784c8ca368178c6b23b209d2f305ebae51ed0c17cf31457db66d874b15dfa5a587c9db
Malware Config
Extracted
Family
gozi_ifsb
Attributes
-
build
214085
Extracted
Family
gozi_ifsb
Botnet
3475
C2
google.com
gmail.com
q982yeq23.xyz
t7763jykqeiy.com
hjruu.com
Attributes
-
build
214085
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
rsa_pubkey.plain
serpent.plain