General
-
Target
4ec97f94d1e8db1950fdc564b0c73e3afe3aeb732322d6778942926ba6023833
-
Size
372KB
-
Sample
220720-tz5x2abedr
-
MD5
f33bd5d8373d59b6041cb4b356083c9f
-
SHA1
c257184cb39a3af83033fbd4693b7cc06f980f31
-
SHA256
4ec97f94d1e8db1950fdc564b0c73e3afe3aeb732322d6778942926ba6023833
-
SHA512
29e34437a8cdb89dff18eea7231274cda4e5269f24b94e902ddf7d7c7e1bc3b4fbe95910a35e87f5001c23e73641ac02a5627fbb6ed5dcf2c0d9c34057cd4c0e
Static task
static1
Behavioral task
behavioral1
Sample
4ec97f94d1e8db1950fdc564b0c73e3afe3aeb732322d6778942926ba6023833.exe
Resource
win7-20220718-en
Malware Config
Extracted
gozi_ifsb
-
build
214062
Extracted
gozi_ifsb
3181
bm25yp.com
xiivhaaou.email
m264591jasen.city
-
build
214062
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
4ec97f94d1e8db1950fdc564b0c73e3afe3aeb732322d6778942926ba6023833
-
Size
372KB
-
MD5
f33bd5d8373d59b6041cb4b356083c9f
-
SHA1
c257184cb39a3af83033fbd4693b7cc06f980f31
-
SHA256
4ec97f94d1e8db1950fdc564b0c73e3afe3aeb732322d6778942926ba6023833
-
SHA512
29e34437a8cdb89dff18eea7231274cda4e5269f24b94e902ddf7d7c7e1bc3b4fbe95910a35e87f5001c23e73641ac02a5627fbb6ed5dcf2c0d9c34057cd4c0e
-