General
-
Target
876-57-0x0000000010000000-0x000000001000E000-memory.dmp
-
Size
56KB
-
Sample
220812-dtq9pagadk
-
MD5
3252782680a3af92feadbf5d1ef95a30
-
SHA1
110279a6f9ec6b4b2d8cea0441423247faad9e28
-
SHA256
8f810986a81583277efe8914058c54e618de92f1a4facea40c25206200083252
-
SHA512
b67b1938d59aace05f91dd3c1a062b5c8769185e01e1bf8d4d548255f033a0fc003b2649fff75520b0fcb8c8f7f3fba7248315bf67552f01e9298edfdea2d4df
Behavioral task
behavioral1
Sample
876-57-0x0000000010000000-0x000000001000E000-memory.dll
Resource
win7-20220718-en
Behavioral task
behavioral2
Sample
876-57-0x0000000010000000-0x000000001000E000-memory.dll
Resource
win10v2004-20220721-en
Malware Config
Extracted
gozi_ifsb
3000
config.edge.skype.com
79.110.52.8
79.110.52.80
193.106.191.163
-
base_path
/drew/
-
build
250240
-
exe_type
loader
-
extension
.jlk
-
server_id
50
Targets
-
-
Target
876-57-0x0000000010000000-0x000000001000E000-memory.dmp
-
Size
56KB
-
MD5
3252782680a3af92feadbf5d1ef95a30
-
SHA1
110279a6f9ec6b4b2d8cea0441423247faad9e28
-
SHA256
8f810986a81583277efe8914058c54e618de92f1a4facea40c25206200083252
-
SHA512
b67b1938d59aace05f91dd3c1a062b5c8769185e01e1bf8d4d548255f033a0fc003b2649fff75520b0fcb8c8f7f3fba7248315bf67552f01e9298edfdea2d4df
Score3/10 -