gozi_ifsb | daa3e551c98f62aa1a278205be361a4bf5b193f1540527ff2ceec0b1e3612f38 | Triage

Sharing

General

Target

1f569ed0000.dll
Size

227KB
Sample

220808-mkyf3sbff7
MD5

c4a57142eb1cce86ab7bf01b9ade35e4
SHA1

70d65a606518ace08e574bf2a352f57b93423e73
SHA256

daa3e551c98f62aa1a278205be361a4bf5b193f1540527ff2ceec0b1e3612f38
SHA512

b497c793c9bb8c1640e0089500c009556bb6086bd12dad477ec9bd7499ddaf562c70a3780b7bbe6f2624c919805133b8e9eb72d5259954e4eaf304c66f64987c

Score

10^/10

gozi_ifsb 11111

Malware Config

Extracted

Family

gozi_ifsb

Botnet

11111

C2

trackin1g-protection.cdnn.mozilla.net

176.10.119.80

194.76.224.245

31.214.157.77

chnkdgpopupser.at

185.158.250.220

185.158.250.234

194.76.224.181

Attributes

base_path
/fonts/
exe_type
worker
extension
.bak
server_id
50

rsa_pubkey.plain

aes.plain

Targets

- Target
  
  1f569ed0000.dll
- Size
  
  227KB
- MD5
  
  c4a57142eb1cce86ab7bf01b9ade35e4
- SHA1
  
  70d65a606518ace08e574bf2a352f57b93423e73
- SHA256
  
  daa3e551c98f62aa1a278205be361a4bf5b193f1540527ff2ceec0b1e3612f38
- SHA512
  
  b497c793c9bb8c1640e0089500c009556bb6086bd12dad477ec9bd7499ddaf562c70a3780b7bbe6f2624c919805133b8e9eb72d5259954e4eaf304c66f64987c
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2