Overview

overview

10

Static

static

10

c2a0000.dll

windows7-x64

1

c2a0000.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c2a0000.dll.exe

  • Size

    227KB

  • Sample

    220920-lasbmsgbcm

  • MD5

    a69238f8e052ede7c59a42d5e130865d

  • SHA1

    fa269bc3f7e36e711dbeab82d2f3ae34cbb88b1e

  • SHA256

    088bc32c087bd66d532100028b15c42c17f126258ef88de215932cc875a3f55a

  • SHA512

    9058000a8d435e925f4fcd41f53cebed9cd568cd5a98e712e29be8b68f845f4ba8673201748fa0d85c4fcd64067d01d8933893807fc0e5fc695f965d2d41d9b4

  • SSDEEP

    3072:NlfGqwJTeTEom3lIkR2SCD6q9KgyItk78mV0dfgxT/cqAFw5VgCK5hcjumxJFoc:NlDosEPR66q9KgylInd6oqAFD5snFoc

Score
10/10
gozi_ifsb40000

Malware Config

Extracted

Family

gozi_ifsb

Botnet

40000

C2

trackingg-protectioon.cdn1.mozilla.net

45.8.158.104

188.127.224.114

weiqeqwns.com

wdeiqeqwns.com

weiqeqwens.com

weiqewqwns.com

iujdhsndjfks.com
Attributes
  • base_path

    /uploaded/

  • exe_type

    worker

  • extension

    .pct

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    • Target

      c2a0000.dll.exe

    • Size

      227KB

    • MD5

      a69238f8e052ede7c59a42d5e130865d

    • SHA1

      fa269bc3f7e36e711dbeab82d2f3ae34cbb88b1e

    • SHA256

      088bc32c087bd66d532100028b15c42c17f126258ef88de215932cc875a3f55a

    • SHA512

      9058000a8d435e925f4fcd41f53cebed9cd568cd5a98e712e29be8b68f845f4ba8673201748fa0d85c4fcd64067d01d8933893807fc0e5fc695f965d2d41d9b4

    • SSDEEP

      3072:NlfGqwJTeTEom3lIkR2SCD6q9KgyItk78mV0dfgxT/cqAFw5VgCK5hcjumxJFoc:NlDosEPR66q9KgylInd6oqAFD5snFoc

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks