General
-
Target
a0d074e64d3271df78776c59a6b8ce1941f701a6207eb005dcde211444a2374f
-
Size
376KB
-
Sample
220625-f5kx6aaae7
-
MD5
4ff50fff180cf201bc99767db4c1fb69
-
SHA1
407490bcf9ed067c98b7ee8845d8a93580610f65
-
SHA256
a0d074e64d3271df78776c59a6b8ce1941f701a6207eb005dcde211444a2374f
-
SHA512
dcb42f92b90abb9d47dc8a381b2b3d1b161361fbdfc05a0d9e08861c4a8bea5b0c1ec360b094022e8d4c3fff2367a65bd640512e5ffbadaa7ef5c3b8ea793b67
Static task
static1
Behavioral task
behavioral1
Sample
a0d074e64d3271df78776c59a6b8ce1941f701a6207eb005dcde211444a2374f.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
3195
nsyblefgg.city
m25lni11528.com
dgrover.band
-
build
214062
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
a0d074e64d3271df78776c59a6b8ce1941f701a6207eb005dcde211444a2374f
-
Size
376KB
-
MD5
4ff50fff180cf201bc99767db4c1fb69
-
SHA1
407490bcf9ed067c98b7ee8845d8a93580610f65
-
SHA256
a0d074e64d3271df78776c59a6b8ce1941f701a6207eb005dcde211444a2374f
-
SHA512
dcb42f92b90abb9d47dc8a381b2b3d1b161361fbdfc05a0d9e08861c4a8bea5b0c1ec360b094022e8d4c3fff2367a65bd640512e5ffbadaa7ef5c3b8ea793b67
-