General
-
Target
3f7fadb0cc3356792c1f67ee9c5d5093173d5629d34e0066dce424dd73838597
-
Size
235KB
-
Sample
220701-bslayafhh2
-
MD5
053774756642ded63b0bbf551d94738d
-
SHA1
f5361348d3ac1dd5e73984714534304879332254
-
SHA256
3f7fadb0cc3356792c1f67ee9c5d5093173d5629d34e0066dce424dd73838597
-
SHA512
0c69bf54f7f100a3aef3755ab61ef037cb4a9af7d5dd579106b3d09563528afad919da2f2b6a1b773df3eb813cc221e6c82b010b2f60b42dc304d0c1c563df27
Static task
static1
Behavioral task
behavioral1
Sample
3f7fadb0cc3356792c1f67ee9c5d5093173d5629d34e0066dce424dd73838597.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
217173
Extracted
gozi_ifsb
3324
r588uaacornell.info
v22xscot.info
tzdottopm.xyz
-
build
217173
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
3f7fadb0cc3356792c1f67ee9c5d5093173d5629d34e0066dce424dd73838597
-
Size
235KB
-
MD5
053774756642ded63b0bbf551d94738d
-
SHA1
f5361348d3ac1dd5e73984714534304879332254
-
SHA256
3f7fadb0cc3356792c1f67ee9c5d5093173d5629d34e0066dce424dd73838597
-
SHA512
0c69bf54f7f100a3aef3755ab61ef037cb4a9af7d5dd579106b3d09563528afad919da2f2b6a1b773df3eb813cc221e6c82b010b2f60b42dc304d0c1c563df27
-