General
-
Target
c85ba331406df77e7fbea3332aa2951b2ae516c2187fcb61218af1e8eaa0cb70
-
Size
203KB
-
Sample
220625-jqghzabhhn
-
MD5
db84b45dc433bdd26003bfd9b286e1f1
-
SHA1
8d3ace6f17747c08efd67038bbcb5df0e421938a
-
SHA256
c85ba331406df77e7fbea3332aa2951b2ae516c2187fcb61218af1e8eaa0cb70
-
SHA512
f3dfb9eb793849944946f8f9f6d104e1b3cf166745cb8a0fdeba9f8b1d991d3617cbb972c263baa6d66bc0f7a229d8ce4535ef6a26d3b57dfc8688f15dcc681b
Static task
static1
Behavioral task
behavioral1
Sample
c85ba331406df77e7fbea3332aa2951b2ae516c2187fcb61218af1e8eaa0cb70.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
215165
Extracted
gozi_ifsb
3162
menehleibe.com
liemuteste.com
thulligend.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
c85ba331406df77e7fbea3332aa2951b2ae516c2187fcb61218af1e8eaa0cb70
-
Size
203KB
-
MD5
db84b45dc433bdd26003bfd9b286e1f1
-
SHA1
8d3ace6f17747c08efd67038bbcb5df0e421938a
-
SHA256
c85ba331406df77e7fbea3332aa2951b2ae516c2187fcb61218af1e8eaa0cb70
-
SHA512
f3dfb9eb793849944946f8f9f6d104e1b3cf166745cb8a0fdeba9f8b1d991d3617cbb972c263baa6d66bc0f7a229d8ce4535ef6a26d3b57dfc8688f15dcc681b
-