Overview

overview

10

Static

static

10

2560000.dll

windows7-x64

1

2560000.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2560000.dll.exe

  • Size

    227KB

  • Sample

    220927-jlfqwaeaaj

  • MD5

    435207f1e50d047c35dac7e74efec55a

  • SHA1

    4501f5bdc481cb4f2bd0d6df33231820a4a3e32d

  • SHA256

    b8ede90d77745ec6121d2ce8e06e85710855df06fe192788081f2b6ef6abb1d9

  • SHA512

    609baadecb7e97ceef94c1953dfcf354a7dc1e0bc91e89c4f9b8a547ce62374b9b8e3ff38bb063adaf326088a14885c1caf0dfe28b05f2da068cba8574541d72

  • SSDEEP

    3072:dlfGqwJTeTEom3lIkR2SCD6q9KgyItk78mV0dfgxT/cqAeUw5VgCK5hcjfoxJFoc:dlDosEPR66q9KgylInd6oqA7D5bnFoc

Score
10/10
gozi_ifsb10101

Malware Config

Extracted

Family

gozi_ifsb

Botnet

10101

C2

trackingg-protectioon.cdn1.mozilla.net

45.8.158.104

188.127.224.114

weiqeqwns.com

wdeiqeqwns.com

weiqeqwens.com

weiqewqwns.com

iujdhsndjfks.com
Attributes
  • base_path

    /uploaded/

  • exe_type

    worker

  • extension

    .pct

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    • Target

      2560000.dll.exe

    • Size

      227KB

    • MD5

      435207f1e50d047c35dac7e74efec55a

    • SHA1

      4501f5bdc481cb4f2bd0d6df33231820a4a3e32d

    • SHA256

      b8ede90d77745ec6121d2ce8e06e85710855df06fe192788081f2b6ef6abb1d9

    • SHA512

      609baadecb7e97ceef94c1953dfcf354a7dc1e0bc91e89c4f9b8a547ce62374b9b8e3ff38bb063adaf326088a14885c1caf0dfe28b05f2da068cba8574541d72

    • SSDEEP

      3072:dlfGqwJTeTEom3lIkR2SCD6q9KgyItk78mV0dfgxT/cqAeUw5VgCK5hcjfoxJFoc:dlDosEPR66q9KgylInd6oqA7D5bnFoc

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks