General
-
Target
2a0774adc7d46c12f038861af93cf423382f90385c87868f181a279209258332
-
Size
459KB
-
Sample
220615-hxlktsegb9
-
MD5
df884cff9885319181dc78d0919b847a
-
SHA1
7451a992c0541c0db90b47edf26039314dc507f6
-
SHA256
2a0774adc7d46c12f038861af93cf423382f90385c87868f181a279209258332
-
SHA512
3242fa2bd2703e51dd8c3dc0f3eb5977fb3d41e1143b54a55a905750d58ba6c5f0c54695474780f07d2d1d48b868425ed9b79f42e5ba078ee96085fcc5b90c37
Static task
static1
Behavioral task
behavioral1
Sample
2a0774adc7d46c12f038861af93cf423382f90385c87868f181a279209258332.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
214085
Extracted
gozi_ifsb
3428
google.com
gmail.com
ztoy.top
qmiller.club
vipresleynz.com
-
build
214085
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
2a0774adc7d46c12f038861af93cf423382f90385c87868f181a279209258332
-
Size
459KB
-
MD5
df884cff9885319181dc78d0919b847a
-
SHA1
7451a992c0541c0db90b47edf26039314dc507f6
-
SHA256
2a0774adc7d46c12f038861af93cf423382f90385c87868f181a279209258332
-
SHA512
3242fa2bd2703e51dd8c3dc0f3eb5977fb3d41e1143b54a55a905750d58ba6c5f0c54695474780f07d2d1d48b868425ed9b79f42e5ba078ee96085fcc5b90c37
-