General
-
Target
a15a6a727942f41f7fc9b3907da7792ad201a762dc177efb18b7be9edab9ed42
-
Size
352KB
-
Sample
220701-g4e6ysffdp
-
MD5
5e58ce6ab4db0018af5d89544d5aafe1
-
SHA1
10db699993eb09799ff16304f6ad0229d1ecf2c8
-
SHA256
a15a6a727942f41f7fc9b3907da7792ad201a762dc177efb18b7be9edab9ed42
-
SHA512
8a9b19ac641498abf62864ce581436c4010a5156130a762cc8e96cbacac40016082bb26a03c9494d8b1f3b26817e96042f0c76903dff08891624ed3842e19c58
Static task
static1
Behavioral task
behavioral1
Sample
a15a6a727942f41f7fc9b3907da7792ad201a762dc177efb18b7be9edab9ed42.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
214082
Extracted
gozi_ifsb
3376
microsoft.com
update.microsoft.com
avast.com
nrosalynh.xyz
c85yeeamaya.info
haepjp.xyz
-
build
214082
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
a15a6a727942f41f7fc9b3907da7792ad201a762dc177efb18b7be9edab9ed42
-
Size
352KB
-
MD5
5e58ce6ab4db0018af5d89544d5aafe1
-
SHA1
10db699993eb09799ff16304f6ad0229d1ecf2c8
-
SHA256
a15a6a727942f41f7fc9b3907da7792ad201a762dc177efb18b7be9edab9ed42
-
SHA512
8a9b19ac641498abf62864ce581436c4010a5156130a762cc8e96cbacac40016082bb26a03c9494d8b1f3b26817e96042f0c76903dff08891624ed3842e19c58
-