gozi_ifsb | 86b1f0e8e8d97005fb1d6671fbd424a8296762c4023f03365d04897b87b75cca | Triage

Sharing

General

Target

273ed250000.dll
Size

227KB
Sample

220803-qnx69sbed9
MD5

d4f6b1d3d02e7435f5f7bce955fba883
SHA1

ef340d5d98842ba2137fb319fcc687412311b1be
SHA256

86b1f0e8e8d97005fb1d6671fbd424a8296762c4023f03365d04897b87b75cca
SHA512

0d0f3d5ed09f3bfe3288c874d03fd4ac2544497660bc60f915b93b3af400802a7d42d6eb38d9875d3809f8cb4d7fc2973ad896900052af704a334e498a116cb2

Score

10^/10

gozi_ifsb 11111

Malware Config

Extracted

Family

gozi_ifsb

Botnet

11111

C2

trackin1g-protection.cdnn.mozilla.net

176.10.119.80

194.76.224.245

31.214.157.77

chnkdgpopupser.at

185.158.250.220

185.158.250.234

194.76.224.181

Attributes

base_path
/fonts/
exe_type
worker
extension
.bak
server_id
50

rsa_pubkey.plain

aes.plain

Targets

- Target
  
  273ed250000.dll
- Size
  
  227KB
- MD5
  
  d4f6b1d3d02e7435f5f7bce955fba883
- SHA1
  
  ef340d5d98842ba2137fb319fcc687412311b1be
- SHA256
  
  86b1f0e8e8d97005fb1d6671fbd424a8296762c4023f03365d04897b87b75cca
- SHA512
  
  0d0f3d5ed09f3bfe3288c874d03fd4ac2544497660bc60f915b93b3af400802a7d42d6eb38d9875d3809f8cb4d7fc2973ad896900052af704a334e498a116cb2
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2