gozi_ifsb | d2e842c219ad7df5204698b41605155517b026414345d0b15163359a81ec3560 | Triage

Sharing

General

Target

gozi.payload-disk
Size

43KB
Sample

220707-lq2j9abegj
MD5

58b4780ada386af695efcb8f8d24d1ea
SHA1

ad3c7175efe022dfac738f12cd5d83221cf107f7
SHA256

d2e842c219ad7df5204698b41605155517b026414345d0b15163359a81ec3560
SHA512

54bca51aa524381ea3199c58a119357afd3771f4117604b47978423666eff0bf26f99884a3732e0594ee3a718f2c1ac94cf3e237687926c6d45a2eda66b9b61e

Score

10^/10

gozi_ifsb 3000

Malware Config

Extracted

Family

gozi_ifsb

Botnet

3000

C2

config.edge.skype.com

79.110.52.164

79.110.52.97

Attributes

base_path
/drew/
build
250239
exe_type
loader
extension
.jlk
server_id
50

rsa_pubkey.plain

aes.plain

Targets

- Target
  
  gozi.payload-disk
- Size
  
  43KB
- MD5
  
  58b4780ada386af695efcb8f8d24d1ea
- SHA1
  
  ad3c7175efe022dfac738f12cd5d83221cf107f7
- SHA256
  
  d2e842c219ad7df5204698b41605155517b026414345d0b15163359a81ec3560
- SHA512
  
  54bca51aa524381ea3199c58a119357afd3771f4117604b47978423666eff0bf26f99884a3732e0594ee3a718f2c1ac94cf3e237687926c6d45a2eda66b9b61e
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2