General
-
Target
4b751a70b19c22f52fd3daaa6195e317b6f1cfef59bcb60064ae2bf484996833
-
Size
459KB
-
Sample
220712-lwl2rafgb4
-
MD5
6884175bf08f230a33b417f19c4b0005
-
SHA1
7870e0bf34e527a14dac8e062a024d12c7b49980
-
SHA256
4b751a70b19c22f52fd3daaa6195e317b6f1cfef59bcb60064ae2bf484996833
-
SHA512
d098e75a81d8da0009711023926c58c139b8311d67eadaa0ce2d2ab56b9c4bea6cb1fa28c6a9d9dc0f72e0b7029cd14db25da8a5bf4d995d65b91fe6852ea9ba
Static task
static1
Behavioral task
behavioral1
Sample
4b751a70b19c22f52fd3daaa6195e317b6f1cfef59bcb60064ae2bf484996833.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
214085
Extracted
gozi_ifsb
3428
google.com
gmail.com
ztoy.top
qmiller.club
vipresleynz.com
-
build
214085
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
4b751a70b19c22f52fd3daaa6195e317b6f1cfef59bcb60064ae2bf484996833
-
Size
459KB
-
MD5
6884175bf08f230a33b417f19c4b0005
-
SHA1
7870e0bf34e527a14dac8e062a024d12c7b49980
-
SHA256
4b751a70b19c22f52fd3daaa6195e317b6f1cfef59bcb60064ae2bf484996833
-
SHA512
d098e75a81d8da0009711023926c58c139b8311d67eadaa0ce2d2ab56b9c4bea6cb1fa28c6a9d9dc0f72e0b7029cd14db25da8a5bf4d995d65b91fe6852ea9ba
-