Overview

overview

10

Static

static

10

9b0000.dll

windows7-x64

1

9b0000.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9b0000.dll

  • Size

    43KB

  • Sample

    221006-mc32lahaf2

  • MD5

    20ebc4efde4da88e146c8e4246f42a5d

  • SHA1

    9dc0793afe5d962bd73be2954dbbe000386f96c6

  • SHA256

    7fb112c3da88d1cec6b56d4503337efc9a55210736c25f6e5a59811ad5846f9b

  • SHA512

    c6a80277fd5d90fb32915a3e4d8fc3cdee1f931fd7c32d59b301acaa3db872adc0615222629925245d1501fa331a05d260a929f3e8f7b1766861d768e67fb1a2

  • SSDEEP

    768:6TmE+L5AkTXKMaqD4leJiArJBFkK527nhoZ3eGiLU8MZXFlkq9k7:6TmE+L5AkTixchBOKinCZ3eGMU8MZTRe

Score
10/10
gozi_ifsb3000

Malware Config

Extracted

Family

gozi_ifsb

Botnet

3000

C2

config.edge.skype.com

89.41.26.99

89.45.4.102

interstarts.top

superlist.top

internetcoca.in
Attributes
  • base_path

    /drew/

  • build

    250246

  • exe_type

    loader

  • extension

    .jlk

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    • Target

      9b0000.dll

    • Size

      43KB

    • MD5

      20ebc4efde4da88e146c8e4246f42a5d

    • SHA1

      9dc0793afe5d962bd73be2954dbbe000386f96c6

    • SHA256

      7fb112c3da88d1cec6b56d4503337efc9a55210736c25f6e5a59811ad5846f9b

    • SHA512

      c6a80277fd5d90fb32915a3e4d8fc3cdee1f931fd7c32d59b301acaa3db872adc0615222629925245d1501fa331a05d260a929f3e8f7b1766861d768e67fb1a2

    • SSDEEP

      768:6TmE+L5AkTXKMaqD4leJiArJBFkK527nhoZ3eGiLU8MZXFlkq9k7:6TmE+L5AkTixchBOKinCZ3eGMU8MZTRe

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks