General
-
Target
f3a0000.dll.exe
-
Size
227KB
-
Sample
220901-rg9r6aggg5
-
MD5
276eb618a19dba775527f985e9bd2dbe
-
SHA1
b8bf862c00854116b11e3c724e108d85aeec42e6
-
SHA256
40dafe4e82513adde4bda0705f4a6992e26ef498587241c25f9bacdf075e36ac
-
SHA512
e1fded1350f1965893b5910eba97ecdeafee14d9268804df3754b55c96f6e74f60d623e78609ba71cfb56698a58fbad6d3aa7a7076964ef848197457fc93ff37
-
SSDEEP
3072:X5hinZgCo+NjJWSsznC2OCyzjFIz4V1T/JDR1vHBB78C752cjbQ5e:X+nZ1o+NJWbn2CMFIzSTRDR1vHR5g
Behavioral task
behavioral1
Sample
f3a0000.dll
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
f3a0000.dll
Resource
win10v2004-20220901-en
Malware Config
Extracted
gozi_ifsb
11111
trackin1g-protection.cdnn.mozilla.net
176.10.119.80
194.76.224.245
31.214.157.77
chnkdgpopupser.at
185.158.250.220
185.158.250.234
194.76.224.181
-
base_path
/fonts/
-
exe_type
worker
-
extension
.bak
-
server_id
50
Targets
-
-
Target
f3a0000.dll.exe
-
Size
227KB
-
MD5
276eb618a19dba775527f985e9bd2dbe
-
SHA1
b8bf862c00854116b11e3c724e108d85aeec42e6
-
SHA256
40dafe4e82513adde4bda0705f4a6992e26ef498587241c25f9bacdf075e36ac
-
SHA512
e1fded1350f1965893b5910eba97ecdeafee14d9268804df3754b55c96f6e74f60d623e78609ba71cfb56698a58fbad6d3aa7a7076964ef848197457fc93ff37
-
SSDEEP
3072:X5hinZgCo+NjJWSsznC2OCyzjFIz4V1T/JDR1vHBB78C752cjbQ5e:X+nZ1o+NJWbn2CMFIzSTRDR1vHR5g
Score1/10 -