General
-
Target
3e5f77c40e8a5c4348b98bac24c7695a48698300f24bca36d35918efef4501b9
-
Size
485KB
-
Sample
220701-jgtryaaccm
-
MD5
4859c5beb46ff5a4385ecc90ddaf9f44
-
SHA1
af6467fed5aeb4065b0ce70ef3a15f6daae03b65
-
SHA256
3e5f77c40e8a5c4348b98bac24c7695a48698300f24bca36d35918efef4501b9
-
SHA512
f498923c80f7dbb2a7022c93f8e9962bc31d56bce1939fdbd1e7303de565a25a850a9be3e84862f2649f8a80ad4eb01cdf1817104fa161f3fbba6f0887b1c235
Static task
static1
Behavioral task
behavioral1
Sample
3e5f77c40e8a5c4348b98bac24c7695a48698300f24bca36d35918efef4501b9.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
215165
Extracted
gozi_ifsb
3140
isatawatag.com
bosototsuy.com
atamekihok.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
3e5f77c40e8a5c4348b98bac24c7695a48698300f24bca36d35918efef4501b9
-
Size
485KB
-
MD5
4859c5beb46ff5a4385ecc90ddaf9f44
-
SHA1
af6467fed5aeb4065b0ce70ef3a15f6daae03b65
-
SHA256
3e5f77c40e8a5c4348b98bac24c7695a48698300f24bca36d35918efef4501b9
-
SHA512
f498923c80f7dbb2a7022c93f8e9962bc31d56bce1939fdbd1e7303de565a25a850a9be3e84862f2649f8a80ad4eb01cdf1817104fa161f3fbba6f0887b1c235
-