Overview

overview

10

Static

static

10

5860000.dll

windows7-x64

1

5860000.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5860000.dll.exe

  • Size

    227KB

  • Sample

    220926-nt1hgaafd8

  • MD5

    7886d8f47267fd9170c03b8ab0b40e3f

  • SHA1

    d878a9bdc974330c77440f356fc949d3ce0de7cc

  • SHA256

    e5fb9bedbd2946535e021c0f80493b1de9fbcb1d6b18be30d3a9ebd74828e49e

  • SHA512

    264fc5d61383f850c15686390cc7adc409d219686aebf7a4060449a78f4d92a5dd41beca1da69e71a03a6b83c2da219a09c0300875b957b0bd29318cda3db523

  • SSDEEP

    3072:35hinZgCo+NjJWSsznC2OCyzjFIz4V1T/JDR1vGBB78C752cjjA5eBd:3+nZ1o+NJWbn2CMFIzSTRDR1vGR5Qgd

Score
10/10
gozi_ifsb20000

Malware Config

Extracted

Family

gozi_ifsb

Botnet

20000

C2

trackingg-protectioon.cdn1.mozilla.net

45.8.158.104

188.127.224.114

weiqeqwns.com

wdeiqeqwns.com

weiqeqwens.com

weiqewqwns.com

iujdhsndjfks.com
Attributes
  • base_path

    /uploaded/

  • exe_type

    worker

  • extension

    .pct

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    • Target

      5860000.dll.exe

    • Size

      227KB

    • MD5

      7886d8f47267fd9170c03b8ab0b40e3f

    • SHA1

      d878a9bdc974330c77440f356fc949d3ce0de7cc

    • SHA256

      e5fb9bedbd2946535e021c0f80493b1de9fbcb1d6b18be30d3a9ebd74828e49e

    • SHA512

      264fc5d61383f850c15686390cc7adc409d219686aebf7a4060449a78f4d92a5dd41beca1da69e71a03a6b83c2da219a09c0300875b957b0bd29318cda3db523

    • SSDEEP

      3072:35hinZgCo+NjJWSsznC2OCyzjFIz4V1T/JDR1vGBB78C752cjjA5eBd:3+nZ1o+NJWbn2CMFIzSTRDR1vGR5Qgd

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks