General
-
Target
gozi.payload-disk
-
Size
43KB
-
Sample
220707-lq2j9abegj
-
MD5
58b4780ada386af695efcb8f8d24d1ea
-
SHA1
ad3c7175efe022dfac738f12cd5d83221cf107f7
-
SHA256
d2e842c219ad7df5204698b41605155517b026414345d0b15163359a81ec3560
-
SHA512
54bca51aa524381ea3199c58a119357afd3771f4117604b47978423666eff0bf26f99884a3732e0594ee3a718f2c1ac94cf3e237687926c6d45a2eda66b9b61e
Behavioral task
behavioral1
Sample
gozi.dll
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
gozi.dll
Resource
win10v2004-20220414-en
Malware Config
Extracted
gozi_ifsb
3000
config.edge.skype.com
79.110.52.164
79.110.52.97
-
base_path
/drew/
-
build
250239
-
exe_type
loader
-
extension
.jlk
-
server_id
50
Targets
-
-
Target
gozi.payload-disk
-
Size
43KB
-
MD5
58b4780ada386af695efcb8f8d24d1ea
-
SHA1
ad3c7175efe022dfac738f12cd5d83221cf107f7
-
SHA256
d2e842c219ad7df5204698b41605155517b026414345d0b15163359a81ec3560
-
SHA512
54bca51aa524381ea3199c58a119357afd3771f4117604b47978423666eff0bf26f99884a3732e0594ee3a718f2c1ac94cf3e237687926c6d45a2eda66b9b61e
Score1/10 -