General
-
Target
5ec39afa7eba18967347b3850934a768a2832f7333d80ba93952b77e0ce0f8f5
-
Size
203KB
-
Sample
220731-xz9srsdhgq
-
MD5
4a270cd8b4b0d31722a11a34a4848450
-
SHA1
eceac6d2bdfb2f52cc751a9ad00d42d9da57136d
-
SHA256
5ec39afa7eba18967347b3850934a768a2832f7333d80ba93952b77e0ce0f8f5
-
SHA512
3af8f6bf5eec5774ebb45258ce28aa86cf920c4d84829c6a23dcd9cccd6593fb38b7d79ad84d6213002b4f6f01f0e234060d9d55e4e06c726fab98ece4922f6b
Static task
static1
Behavioral task
behavioral1
Sample
5ec39afa7eba18967347b3850934a768a2832f7333d80ba93952b77e0ce0f8f5.exe
Resource
win7-20220718-en
Malware Config
Extracted
gozi_ifsb
-
build
215165
Extracted
gozi_ifsb
3162
menehleibe.com
liemuteste.com
thulligend.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
5ec39afa7eba18967347b3850934a768a2832f7333d80ba93952b77e0ce0f8f5
-
Size
203KB
-
MD5
4a270cd8b4b0d31722a11a34a4848450
-
SHA1
eceac6d2bdfb2f52cc751a9ad00d42d9da57136d
-
SHA256
5ec39afa7eba18967347b3850934a768a2832f7333d80ba93952b77e0ce0f8f5
-
SHA512
3af8f6bf5eec5774ebb45258ce28aa86cf920c4d84829c6a23dcd9cccd6593fb38b7d79ad84d6213002b4f6f01f0e234060d9d55e4e06c726fab98ece4922f6b
-