General
-
Target
59420e3ef30147a38fa1eee4b2064ff1d09a21d89a3ba71e3cca919a3a83cb62
-
Size
203KB
-
Sample
220724-fg4qcsfegk
-
MD5
7010bf418ab23dc549d6c73a2c94654b
-
SHA1
a1f43b327d3656907590570bfa539065d1f7c85a
-
SHA256
59420e3ef30147a38fa1eee4b2064ff1d09a21d89a3ba71e3cca919a3a83cb62
-
SHA512
384fec8f998bf985c0352bfcc05c3a588bf710b6e17c889e10fdaf4a7ffed4916200edd3f559b2bc6a5fa140efe7fc03d4bc2fca96844f07681f9fb6dc5ce07e
Static task
static1
Behavioral task
behavioral1
Sample
59420e3ef30147a38fa1eee4b2064ff1d09a21d89a3ba71e3cca919a3a83cb62.exe
Resource
win7-20220715-en
Malware Config
Extracted
gozi_ifsb
-
build
215165
Extracted
gozi_ifsb
3162
menehleibe.com
liemuteste.com
thulligend.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
59420e3ef30147a38fa1eee4b2064ff1d09a21d89a3ba71e3cca919a3a83cb62
-
Size
203KB
-
MD5
7010bf418ab23dc549d6c73a2c94654b
-
SHA1
a1f43b327d3656907590570bfa539065d1f7c85a
-
SHA256
59420e3ef30147a38fa1eee4b2064ff1d09a21d89a3ba71e3cca919a3a83cb62
-
SHA512
384fec8f998bf985c0352bfcc05c3a588bf710b6e17c889e10fdaf4a7ffed4916200edd3f559b2bc6a5fa140efe7fc03d4bc2fca96844f07681f9fb6dc5ce07e
-