General
-
Target
49c1286250f6610b1db27d148c05d7027f5499dd752edfd6045a06a0d9923c2d
-
Size
203KB
-
Sample
220712-s5817sgedk
-
MD5
f4a8bc85c23e961daf9ab14eb5d155c5
-
SHA1
13fb84bd5b8cc5ac48b09dee129f26d45f11a255
-
SHA256
49c1286250f6610b1db27d148c05d7027f5499dd752edfd6045a06a0d9923c2d
-
SHA512
95bf8334ae374dab040b0ee8faa86b249992c25d471295b6d13a7bd05ad139db5e535770e45dcc246b05492ab78b0992ab67be4ae67f564afa345158a917fbd1
Static task
static1
Behavioral task
behavioral1
Sample
49c1286250f6610b1db27d148c05d7027f5499dd752edfd6045a06a0d9923c2d.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
215165
Extracted
gozi_ifsb
3162
menehleibe.com
liemuteste.com
thulligend.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
49c1286250f6610b1db27d148c05d7027f5499dd752edfd6045a06a0d9923c2d
-
Size
203KB
-
MD5
f4a8bc85c23e961daf9ab14eb5d155c5
-
SHA1
13fb84bd5b8cc5ac48b09dee129f26d45f11a255
-
SHA256
49c1286250f6610b1db27d148c05d7027f5499dd752edfd6045a06a0d9923c2d
-
SHA512
95bf8334ae374dab040b0ee8faa86b249992c25d471295b6d13a7bd05ad139db5e535770e45dcc246b05492ab78b0992ab67be4ae67f564afa345158a917fbd1
-