General
-
Target
397d42912f4ec63c0f40fe948b3aea496aecc37d73de118c83980cffe8c4eb19
-
Size
203KB
-
Sample
220625-l8kdpagban
-
MD5
e3616c0e31252988035204581a2196fa
-
SHA1
5318f434d42486c93d5886b9ba2132adda38ddbf
-
SHA256
397d42912f4ec63c0f40fe948b3aea496aecc37d73de118c83980cffe8c4eb19
-
SHA512
3c406e7ef3ebf40dbc39608424992b436432788831c1ea5304473cc06f95c681d68ae26167d022ee38563666f9a4d63a7de213fef6948ff3d008db47989ce454
Static task
static1
Behavioral task
behavioral1
Sample
397d42912f4ec63c0f40fe948b3aea496aecc37d73de118c83980cffe8c4eb19.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
215165
Extracted
gozi_ifsb
3162
menehleibe.com
liemuteste.com
thulligend.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
397d42912f4ec63c0f40fe948b3aea496aecc37d73de118c83980cffe8c4eb19
-
Size
203KB
-
MD5
e3616c0e31252988035204581a2196fa
-
SHA1
5318f434d42486c93d5886b9ba2132adda38ddbf
-
SHA256
397d42912f4ec63c0f40fe948b3aea496aecc37d73de118c83980cffe8c4eb19
-
SHA512
3c406e7ef3ebf40dbc39608424992b436432788831c1ea5304473cc06f95c681d68ae26167d022ee38563666f9a4d63a7de213fef6948ff3d008db47989ce454
-