General
-
Target
62c6b5af0566b.dll
-
Size
432KB
-
Sample
220707-mkyf3sdbek
-
MD5
82186dbbba674eaeed2b4bb95a5a9fac
-
SHA1
00d0e69a746d05039b63fdd94eb2bce6ce27a4a7
-
SHA256
251b7936786ed9284ce06582007fe75c3bc301fd0f1060fa53e71e54aff28a7f
-
SHA512
91ba44bf86c583ae28a09c20bebd7b6a9d253e690ce3f358b669d48d17980f0a9b7a40acaa9325f773504bb98edcc9e8edd252716628dd7a79e5394e06d782b4
Static task
static1
Behavioral task
behavioral1
Sample
62c6b5af0566b.dll
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
3000
config.edge.skype.com
79.110.52.164
79.110.52.97
-
base_path
/drew/
-
build
250239
-
exe_type
loader
-
extension
.jlk
-
server_id
50
Targets
-
-
Target
62c6b5af0566b.dll
-
Size
432KB
-
MD5
82186dbbba674eaeed2b4bb95a5a9fac
-
SHA1
00d0e69a746d05039b63fdd94eb2bce6ce27a4a7
-
SHA256
251b7936786ed9284ce06582007fe75c3bc301fd0f1060fa53e71e54aff28a7f
-
SHA512
91ba44bf86c583ae28a09c20bebd7b6a9d253e690ce3f358b669d48d17980f0a9b7a40acaa9325f773504bb98edcc9e8edd252716628dd7a79e5394e06d782b4
-
suricata: ET MALWARE Ursnif Variant CnC Beacon - URI Struct M2 (_2F)
suricata: ET MALWARE Ursnif Variant CnC Beacon - URI Struct M2 (_2F)
-
Blocklisted process makes network request
-