Overview

overview

10

Static

static

10

1484-65-0x...ry.exe

windows7-x64

1

1484-65-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1484-65-0x0000000000400000-0x0000000000463000-memory.dmp

  • Size

    396KB

  • Sample

    220802-y2fhdaaff9

  • MD5

    06c08e3852c30b00547bc25033cb67a0

  • SHA1

    6e3c261de8c2e8e4696f0626e8b924ed2f7db0a9

  • SHA256

    f2993b35b48c23362145139ce824cb3c5ed12a72bc3869f79f4ac189588ce0c4

  • SHA512

    ba20871c60b73ba92a2741db9d6545b1ee0f31a4d9e789f122b87e7692abb30d594c4c85570e7277b143e60d490c79a9f23a013e2bd962e12a89bfa56f7b79cd

Score
10/10
gozi_ifsb11111

Malware Config

Extracted

Family

gozi_ifsb

Botnet

11111

C2

trackingg-protectioon.cdn1.mozilla.net

194.76.225.168

194.76.224.242
Attributes
  • base_path

    /fonts/

  • build

    250240

  • exe_type

    loader

  • extension

    .bak

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    • Target

      1484-65-0x0000000000400000-0x0000000000463000-memory.dmp

    • Size

      396KB

    • MD5

      06c08e3852c30b00547bc25033cb67a0

    • SHA1

      6e3c261de8c2e8e4696f0626e8b924ed2f7db0a9

    • SHA256

      f2993b35b48c23362145139ce824cb3c5ed12a72bc3869f79f4ac189588ce0c4

    • SHA512

      ba20871c60b73ba92a2741db9d6545b1ee0f31a4d9e789f122b87e7692abb30d594c4c85570e7277b143e60d490c79a9f23a013e2bd962e12a89bfa56f7b79cd

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks