General
-
Target
26958500c88d571b1e35f270d2e707fb6a9ed9fe852921d84c4581964b4c19a6
-
Size
372KB
-
Sample
220616-jvbtaaced9
-
MD5
0cd7e5ae28a0bfe2fea99098ac611d11
-
SHA1
0d51b79f825a0f6690f18584cfe1f287c3e21cf3
-
SHA256
26958500c88d571b1e35f270d2e707fb6a9ed9fe852921d84c4581964b4c19a6
-
SHA512
bb6fc75d215c49c8b5ed457b91df1788fb0334a3ce3481e20c64ec1c9fe7dff5f9dd70ea9d22a4e345f494095f55ef10140173f3416bf583f1643e49e169ead6
Static task
static1
Behavioral task
behavioral1
Sample
26958500c88d571b1e35f270d2e707fb6a9ed9fe852921d84c4581964b4c19a6.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
214062
Extracted
gozi_ifsb
3181
bm25yp.com
xiivhaaou.email
m264591jasen.city
-
build
214062
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
26958500c88d571b1e35f270d2e707fb6a9ed9fe852921d84c4581964b4c19a6
-
Size
372KB
-
MD5
0cd7e5ae28a0bfe2fea99098ac611d11
-
SHA1
0d51b79f825a0f6690f18584cfe1f287c3e21cf3
-
SHA256
26958500c88d571b1e35f270d2e707fb6a9ed9fe852921d84c4581964b4c19a6
-
SHA512
bb6fc75d215c49c8b5ed457b91df1788fb0334a3ce3481e20c64ec1c9fe7dff5f9dd70ea9d22a4e345f494095f55ef10140173f3416bf583f1643e49e169ead6
-