Overview

overview

10

Static

static

10

60d0000.dll

windows7-x64

1

60d0000.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    60d0000.dll.exe

  • Size

    227KB

  • Sample

    220926-kfw2cabcck

  • MD5

    9d395687dbce310ddf3a3ed4a930a5ea

  • SHA1

    3e2c248b96901150c36e722e3722e974eb148144

  • SHA256

    7204e4550639593b5b5b197c171a986833754a9e7e0f7a3e1ef6d31b6ce23344

  • SHA512

    e6d3ca9908eead7efdfb1c2ec6e74a69f7711d49c4bed4c9d3764df838aa37016209023c0c44be26e65058a8fedbc306f990a5597fcedf1664aa8c5e0649fcce

  • SSDEEP

    6144:3+nZ1o+NJWbn2CMFIzSTRDR1vwQR5kgd:3+ZNNJWbn2CMFIzSj1vjDd

Score
10/10
gozi_ifsb20000

Malware Config

Extracted

Family

gozi_ifsb

Botnet

20000

C2

trackingg-protectioon.cdn1.mozilla.net

45.8.158.104

188.127.224.114

weiqeqwns.com

wdeiqeqwns.com

weiqeqwens.com

weiqewqwns.com

iujdhsndjfks.com
Attributes
  • base_path

    /uploaded/

  • exe_type

    worker

  • extension

    .pct

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    • Target

      60d0000.dll.exe

    • Size

      227KB

    • MD5

      9d395687dbce310ddf3a3ed4a930a5ea

    • SHA1

      3e2c248b96901150c36e722e3722e974eb148144

    • SHA256

      7204e4550639593b5b5b197c171a986833754a9e7e0f7a3e1ef6d31b6ce23344

    • SHA512

      e6d3ca9908eead7efdfb1c2ec6e74a69f7711d49c4bed4c9d3764df838aa37016209023c0c44be26e65058a8fedbc306f990a5597fcedf1664aa8c5e0649fcce

    • SSDEEP

      6144:3+nZ1o+NJWbn2CMFIzSTRDR1vwQR5kgd:3+ZNNJWbn2CMFIzSj1vjDd

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks