General
-
Target
49bb018a302ee1a392a5067f2d5630c94108ddd515cdad50cd0f932975444a30
-
Size
376KB
-
Sample
220712-s8mx5sbdh5
-
MD5
9148c1ecd1cb5f0dd5c367df786dcb48
-
SHA1
04d056f085879049964b5edf4165a989315b1b08
-
SHA256
49bb018a302ee1a392a5067f2d5630c94108ddd515cdad50cd0f932975444a30
-
SHA512
37486da752b7a7d883adb67aa5149d079edf96a29cf1198c2eb470976c5f8f2f8462d58cdc3ff9297eabbf7e208660b89ce1ec9474189cbe2b60954876bee994
Static task
static1
Behavioral task
behavioral1
Sample
49bb018a302ee1a392a5067f2d5630c94108ddd515cdad50cd0f932975444a30.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
214062
Extracted
gozi_ifsb
3193
fy76qn.email
dst1894.com
w40shailie.city
-
build
214062
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
49bb018a302ee1a392a5067f2d5630c94108ddd515cdad50cd0f932975444a30
-
Size
376KB
-
MD5
9148c1ecd1cb5f0dd5c367df786dcb48
-
SHA1
04d056f085879049964b5edf4165a989315b1b08
-
SHA256
49bb018a302ee1a392a5067f2d5630c94108ddd515cdad50cd0f932975444a30
-
SHA512
37486da752b7a7d883adb67aa5149d079edf96a29cf1198c2eb470976c5f8f2f8462d58cdc3ff9297eabbf7e208660b89ce1ec9474189cbe2b60954876bee994
-