General
-
Target
430f598b3fccb2a5ba9f1f1e48a224202796ee59ad815f285ef81ef52583a26a
-
Size
372KB
-
Sample
220708-addf4shfcp
-
MD5
32531c9f01e95106554d5c24413550ad
-
SHA1
792467134bbd3b7023bce17f5b997cb4a3e2794f
-
SHA256
430f598b3fccb2a5ba9f1f1e48a224202796ee59ad815f285ef81ef52583a26a
-
SHA512
a02b400fea0f239feca8cd336f6cd0193abf6f6ed224c2cf5046673bd47121ba6983b33a9daa57e382acc9a0e9ac9825dfc09bb0a4b62ae16d0695a80d6f0c5b
Static task
static1
Behavioral task
behavioral1
Sample
430f598b3fccb2a5ba9f1f1e48a224202796ee59ad815f285ef81ef52583a26a.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
214062
Extracted
gozi_ifsb
3181
bm25yp.com
xiivhaaou.email
m264591jasen.city
-
build
214062
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
430f598b3fccb2a5ba9f1f1e48a224202796ee59ad815f285ef81ef52583a26a
-
Size
372KB
-
MD5
32531c9f01e95106554d5c24413550ad
-
SHA1
792467134bbd3b7023bce17f5b997cb4a3e2794f
-
SHA256
430f598b3fccb2a5ba9f1f1e48a224202796ee59ad815f285ef81ef52583a26a
-
SHA512
a02b400fea0f239feca8cd336f6cd0193abf6f6ed224c2cf5046673bd47121ba6983b33a9daa57e382acc9a0e9ac9825dfc09bb0a4b62ae16d0695a80d6f0c5b
-