General
-
Target
89f52638744cd63312f1889c6a25e3fdd6eff8ab752d39d0bd8cc5b2a4c825ef
-
Size
215KB
-
Sample
220625-ghhd7aaeg2
-
MD5
d4f85fef4b5c5b6a9bf8fdcbb75c0637
-
SHA1
0546cf27dadbf964d8bb3c82781047c097e6736e
-
SHA256
89f52638744cd63312f1889c6a25e3fdd6eff8ab752d39d0bd8cc5b2a4c825ef
-
SHA512
3834cc43bbcbaed56b3ad7ac40a3ff2e28d04ed12f5ac59edec422b634252928026e328d37c0537177e36fe28836053f2d054e55893f5c42397d73b4b7496024
Static task
static1
Behavioral task
behavioral1
Sample
89f52638744cd63312f1889c6a25e3fdd6eff8ab752d39d0bd8cc5b2a4c825ef.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
215165
Extracted
gozi_ifsb
3153
biesbetiop.com
kircherche.com
toforemedi.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
89f52638744cd63312f1889c6a25e3fdd6eff8ab752d39d0bd8cc5b2a4c825ef
-
Size
215KB
-
MD5
d4f85fef4b5c5b6a9bf8fdcbb75c0637
-
SHA1
0546cf27dadbf964d8bb3c82781047c097e6736e
-
SHA256
89f52638744cd63312f1889c6a25e3fdd6eff8ab752d39d0bd8cc5b2a4c825ef
-
SHA512
3834cc43bbcbaed56b3ad7ac40a3ff2e28d04ed12f5ac59edec422b634252928026e328d37c0537177e36fe28836053f2d054e55893f5c42397d73b4b7496024
-