General
-
Target
4afa2d9390aced193d03ddcff96679df8aa761a9f9d56ce39ebfa28b34e1eb71
-
Size
215KB
-
Sample
220712-nh8dyaagf2
-
MD5
dad0d3536e792e041715f2dae150bfb7
-
SHA1
8ad93a94e4c611cf595160476a80a158ed7e04d2
-
SHA256
4afa2d9390aced193d03ddcff96679df8aa761a9f9d56ce39ebfa28b34e1eb71
-
SHA512
d37783ed21393cdfa92fec05581cffd96e44637db58845c8bd902b6a643a903b6c693d9e52d0269bdcf43638926513f8a6159c1ab2d6f2f51a3caba0a2aca262
Static task
static1
Behavioral task
behavioral1
Sample
4afa2d9390aced193d03ddcff96679df8aa761a9f9d56ce39ebfa28b34e1eb71.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
215165
Extracted
gozi_ifsb
3153
biesbetiop.com
kircherche.com
toforemedi.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
4afa2d9390aced193d03ddcff96679df8aa761a9f9d56ce39ebfa28b34e1eb71
-
Size
215KB
-
MD5
dad0d3536e792e041715f2dae150bfb7
-
SHA1
8ad93a94e4c611cf595160476a80a158ed7e04d2
-
SHA256
4afa2d9390aced193d03ddcff96679df8aa761a9f9d56ce39ebfa28b34e1eb71
-
SHA512
d37783ed21393cdfa92fec05581cffd96e44637db58845c8bd902b6a643a903b6c693d9e52d0269bdcf43638926513f8a6159c1ab2d6f2f51a3caba0a2aca262
-