Overview

overview

10

Static

static

10

1f0000.dll

windows7-x64

1

1f0000.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1f0000.dll

  • Size

    43KB

  • Sample

    221018-jvzkcafac8

  • MD5

    fb46a45c032fb8b5798f00878af54464

  • SHA1

    e8e054a8c8aa27120909bb89725b36f5a7136d98

  • SHA256

    576413cc88f47adde6685639f88d17d495fff4475c89603fe83078f81ee20846

  • SHA512

    180f88f8d8bd89648d49cf6214e311159bfed43eb886b9e06456643f8a5938e55cfb2751e61d83d5d206b08627b89bf0be7f22907dafccaa39050bd1e30778be

  • SSDEEP

    768:FTmE+L5AkTXKMaqD4leJiArJBFkK527nhoZ3eGiJ18MGXFlkq9k34d:FTmE+L5AkTixchBOKinCZ3eGa18MGTRx

Score
10/10
gozi_ifsb10103

Malware Config

Extracted

Family

gozi_ifsb

Botnet

10103

C2

trackingg-protectioon.cdn1.mozilla.net

siwdmfkshsgw.com

188.127.224.114

weiqeqwns.com

weiqeqwens.com

weiqewqwns.com

iujdhsndjfks.com

ijduwhsbvk.com
Attributes
  • base_path

    /uploaded/

  • build

    250246

  • exe_type

    loader

  • extension

    .pct

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    • Target

      1f0000.dll

    • Size

      43KB

    • MD5

      fb46a45c032fb8b5798f00878af54464

    • SHA1

      e8e054a8c8aa27120909bb89725b36f5a7136d98

    • SHA256

      576413cc88f47adde6685639f88d17d495fff4475c89603fe83078f81ee20846

    • SHA512

      180f88f8d8bd89648d49cf6214e311159bfed43eb886b9e06456643f8a5938e55cfb2751e61d83d5d206b08627b89bf0be7f22907dafccaa39050bd1e30778be

    • SSDEEP

      768:FTmE+L5AkTXKMaqD4leJiArJBFkK527nhoZ3eGiJ18MGXFlkq9k34d:FTmE+L5AkTixchBOKinCZ3eGa18MGTRx

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks