General
-
Target
466ca11cc9c85ff81a0493923459b9ba34c99d64637f36fa7abcb895f7882c9c
-
Size
1.7MB
-
Sample
220707-krjv6ahfcq
-
MD5
1ebcf7ac818be32e76dd8f2032bb35da
-
SHA1
ac43ad6a998cd99993b9090ffbc6f4f11b44c8f1
-
SHA256
466ca11cc9c85ff81a0493923459b9ba34c99d64637f36fa7abcb895f7882c9c
-
SHA512
f717da1a41ffb34c1378bd7c733bfb2772886b6af24011be1a257693b849a7dcbc21763f83beb0c85688dfb72e02cfd701e5fe8178a9ac45b1ebd480845c3e5d
Static task
static1
Behavioral task
behavioral1
Sample
466ca11cc9c85ff81a0493923459b9ba34c99d64637f36fa7abcb895f7882c9c.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
215165
Extracted
gozi_ifsb
3155
roevinguef.com
sfernacrif.com
abregeousn.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
466ca11cc9c85ff81a0493923459b9ba34c99d64637f36fa7abcb895f7882c9c
-
Size
1.7MB
-
MD5
1ebcf7ac818be32e76dd8f2032bb35da
-
SHA1
ac43ad6a998cd99993b9090ffbc6f4f11b44c8f1
-
SHA256
466ca11cc9c85ff81a0493923459b9ba34c99d64637f36fa7abcb895f7882c9c
-
SHA512
f717da1a41ffb34c1378bd7c733bfb2772886b6af24011be1a257693b849a7dcbc21763f83beb0c85688dfb72e02cfd701e5fe8178a9ac45b1ebd480845c3e5d
-