General

  • Target

    eac0000.dll

  • Size

    215KB

  • Sample

    220803-qnyg2acefm

  • MD5

    7d8c4d9d225cd82c6ae5706503b698e5

  • SHA1

    1dddc158b56e0025b36eae2c0932626f5caadfca

  • SHA256

    fe7ace13b5ead1e1d6614e74a2d2a470664218cb0f22f37fcaed1540349a7033

  • SHA512

    42eb9ee409577aa35ab591c14a7d799ac2417b62ad8abe8da605e14be55bd3290822a7e42560c8195aea34dda2f47f83fb57c0b990c0d6b458c13b83ca213bee

Score
10/10

Malware Config

Extracted

Family

gozi_ifsb

Botnet

8999

C2

arfv.skype.com

185.189.151.34

31.214.157.121

fakkktyirosc.at

Attributes
  • base_path

    /chupa/

  • exe_type

    worker

  • extension

    .upa

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    • Target

      eac0000.dll

    • Size

      215KB

    • MD5

      7d8c4d9d225cd82c6ae5706503b698e5

    • SHA1

      1dddc158b56e0025b36eae2c0932626f5caadfca

    • SHA256

      fe7ace13b5ead1e1d6614e74a2d2a470664218cb0f22f37fcaed1540349a7033

    • SHA512

      42eb9ee409577aa35ab591c14a7d799ac2417b62ad8abe8da605e14be55bd3290822a7e42560c8195aea34dda2f47f83fb57c0b990c0d6b458c13b83ca213bee

    Score
    1/10

MITRE ATT&CK Matrix

Tasks