General
-
Target
2f461cd9fecdcd30c143fa3ed806df48bb8ac83a0b48c1ec2ce01a151b98c288
-
Size
372KB
-
Sample
220621-2xrxdsebfn
-
MD5
77fb2e909a16b8ed3ac72e42d92d1530
-
SHA1
78052938246f5fc0ba52e21f79bd454a704e911c
-
SHA256
2f461cd9fecdcd30c143fa3ed806df48bb8ac83a0b48c1ec2ce01a151b98c288
-
SHA512
2efcf98032057bbf9bef59121c6c6db80c47f590d45f96208095992aa4d71d833cb9fca17481287e45a2327defc39383bb715ed90f6ed9c58ea07f1416f748cb
Static task
static1
Behavioral task
behavioral1
Sample
2f461cd9fecdcd30c143fa3ed806df48bb8ac83a0b48c1ec2ce01a151b98c288.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
214062
Extracted
gozi_ifsb
3181
bm25yp.com
xiivhaaou.email
m264591jasen.city
-
build
214062
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
2f461cd9fecdcd30c143fa3ed806df48bb8ac83a0b48c1ec2ce01a151b98c288
-
Size
372KB
-
MD5
77fb2e909a16b8ed3ac72e42d92d1530
-
SHA1
78052938246f5fc0ba52e21f79bd454a704e911c
-
SHA256
2f461cd9fecdcd30c143fa3ed806df48bb8ac83a0b48c1ec2ce01a151b98c288
-
SHA512
2efcf98032057bbf9bef59121c6c6db80c47f590d45f96208095992aa4d71d833cb9fca17481287e45a2327defc39383bb715ed90f6ed9c58ea07f1416f748cb
-