Overview

overview

10

Static

static

10

dumped.dll

windows7-x64

1

dumped.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dumped.bin

  • Size

    540KB

  • Sample

    221021-cfvvaafgbk

  • MD5

    3aaf34ffbe45e4f54b37392ad1afe9a5

  • SHA1

    950dedbae18a9901ef1148ac64feee781baa77b2

  • SHA256

    760c0eaffc5943a6b4ff839ed2782ab3d3626e5d12f5cbf07b8840bf78684588

  • SHA512

    ef84e91d0c7bdc4cf73220f46ad5aa9a60f064670d4d20b6e6eebdc101cd9bd68513b08508f0021bfa3c558ab2f5e1a9ae218aaeba6e032c4ac8c8258235943a

  • SSDEEP

    1536:lTmE+L5AkTixchBOKinCZ3eGGb7dTR9kR:liEWPOQOKCCteb7he

Score
10/10
gozi_ifsb10101

Malware Config

Extracted

Family

gozi_ifsb

Botnet

10101

C2

trackingg-protectioon.cdn1.mozilla.net

45.8.158.104

188.127.224.114

weiqeqwns.com

wdeiqeqwns.com

weiqeqwens.com

weiqewqwns.com

iujdhsndjfks.com
Attributes
  • base_path

    /uploaded/

  • build

    250246

  • exe_type

    loader

  • extension

    .pct

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    • Target

      dumped.bin

    • Size

      540KB

    • MD5

      3aaf34ffbe45e4f54b37392ad1afe9a5

    • SHA1

      950dedbae18a9901ef1148ac64feee781baa77b2

    • SHA256

      760c0eaffc5943a6b4ff839ed2782ab3d3626e5d12f5cbf07b8840bf78684588

    • SHA512

      ef84e91d0c7bdc4cf73220f46ad5aa9a60f064670d4d20b6e6eebdc101cd9bd68513b08508f0021bfa3c558ab2f5e1a9ae218aaeba6e032c4ac8c8258235943a

    • SSDEEP

      1536:lTmE+L5AkTixchBOKinCZ3eGGb7dTR9kR:liEWPOQOKCCteb7he

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks