Analysis
-
max time kernel
41s -
max time network
73s -
platform
windows10-2004_x64 -
resource
win10v2004-20220414-en -
submitted
14/06/2022, 19:51
Static task
static1
Behavioral task
behavioral1
Sample
2d4d70c14741e6eb9ad05c3aa1f03047088d2324726d79118c68d436ed6b157d.exe
Resource
win7-20220414-en
0 signatures
0 seconds
General
-
Target
2d4d70c14741e6eb9ad05c3aa1f03047088d2324726d79118c68d436ed6b157d.exe
-
Size
455KB
-
MD5
534b1e89c0887e1d802af08b4ef9779e
-
SHA1
5f8d7dbcb914efbbb39adbe79a2a8a49e109f543
-
SHA256
2d4d70c14741e6eb9ad05c3aa1f03047088d2324726d79118c68d436ed6b157d
-
SHA512
d224e14850a13914ba7724e8b50222e806952d1558bd09b9ed9430bf7375f7778b18c639d6725ecdff0c1e2092a89e0b150302c6e5a166ed21ad017d57cdf2c5
Malware Config
Extracted
Family
gozi_ifsb
Attributes
-
build
214062
Extracted
Family
gozi_ifsb
Botnet
3183
C2
v99jarret3287x.com
huymireyai.company
so64a92elody.email
Attributes
-
build
214062
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
rsa_pubkey.plain
serpent.plain