General
-
Target
47d9c9bead46c9e03164cef591d98073b3bfde305b697fa8b6d3cf20eb15ffb6
-
Size
203KB
-
Sample
220714-frs2lsehbr
-
MD5
dba00c31456bae11ee673bd619d6cf10
-
SHA1
8044e1fd565f029531efc075187907615edd46cd
-
SHA256
47d9c9bead46c9e03164cef591d98073b3bfde305b697fa8b6d3cf20eb15ffb6
-
SHA512
b7e0c36921e40d02ddd6d90ee26ae75b03dcb50862b2291fc48a90924b195c63b2a477b95e0021794c705146dbcfea5b8d7d03be15325ab4682b0e853d713380
Static task
static1
Behavioral task
behavioral1
Sample
47d9c9bead46c9e03164cef591d98073b3bfde305b697fa8b6d3cf20eb15ffb6.exe
Resource
win7-20220414-en
Malware Config
Extracted
gozi_ifsb
-
build
215165
Extracted
gozi_ifsb
3162
menehleibe.com
liemuteste.com
thulligend.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
47d9c9bead46c9e03164cef591d98073b3bfde305b697fa8b6d3cf20eb15ffb6
-
Size
203KB
-
MD5
dba00c31456bae11ee673bd619d6cf10
-
SHA1
8044e1fd565f029531efc075187907615edd46cd
-
SHA256
47d9c9bead46c9e03164cef591d98073b3bfde305b697fa8b6d3cf20eb15ffb6
-
SHA512
b7e0c36921e40d02ddd6d90ee26ae75b03dcb50862b2291fc48a90924b195c63b2a477b95e0021794c705146dbcfea5b8d7d03be15325ab4682b0e853d713380
-