Analysis
-
max time kernel
68s -
max time network
117s -
platform
windows10-2004_x64 -
resource
win10v2004-20220414-en -
submitted
14/06/2022, 19:25
Static task
static1
Behavioral task
behavioral1
Sample
2d71307f5f3067b4a57eec46a42b717dc0c1982aff90755cc5831f593bea03f5.exe
Resource
win7-20220414-en
0 signatures
0 seconds
General
-
Target
2d71307f5f3067b4a57eec46a42b717dc0c1982aff90755cc5831f593bea03f5.exe
-
Size
197KB
-
MD5
c4afe8cdba665285c011e2eb7092d096
-
SHA1
e3e01074d32cd23ea29ea4b8b95e489dffba6edd
-
SHA256
2d71307f5f3067b4a57eec46a42b717dc0c1982aff90755cc5831f593bea03f5
-
SHA512
2cd6d1c5e585c566773fd8c7b608b47c7f148dc891302243e52814ab7044c3e8c636055a6f0d2dc8e3b2a82474f2e8bb20dc19e7dfcf3892b1f2c649308a6d36
Malware Config
Extracted
Family
gozi_ifsb
Attributes
-
build
215165
Extracted
Family
gozi_ifsb
Botnet
3135
C2
zweideckei.com
ziebelschr.com
endetztera.com
Attributes
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
rsa_pubkey.plain
serpent.plain