gozi_ifsb | 514b0d82faa73cee71e7b9323411f496be435bfe01844f9369ffb2fa8cef9d54_dump_0x02390000 | Triage

Submit
Reports

Overview

overview

Static

static

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

General

Target

514b0d82faa73cee71e7b9323411f496be435bfe01844f9369ffb2fa8cef9d54_dump_0x02390000
Size

260KB
MD5

a8b9ba9722b146857c442ac96d6eb699
SHA1

e91738c28d267870486939b94c36f3f12823a764
SHA256

72ff0be892a8e527fb2109a818118cc2740b6ae6ad73415908716009b74d55dd
SHA512

7177edacb118a83dc830564b6bf5f62f7cd6d075d8581d597847048294449e489bb4ecfba6be8c40134cb4e4924d280eff61c0581019d0baac4ebc7641830689
SSDEEP

6144:jfMszqyw4g1kqlal90oN+AC53+tdexuZdgGk0OR8LsMB:DTBw4g1kqglelAbtdxgGW8Ls

Score

10^/10

1000 gozi_ifsb

Malware Config

Extracted

Family

gozi_ifsb

Botnet

1000

C2

rastobona.com

artefaki.com

spamhouseanilingus.ru

gazitivaton.ru

Attributes

build
200000
exe_type
worker
server_id
12

rsa_pubkey.plain

serpent.plain

Signatures

Gozi_ifsb family
gozi_ifsb

Files

514b0d82faa73cee71e7b9323411f496be435bfe01844f9369ffb2fa8cef9d54_dump_0x02390000

© 2018-2025

Terms | Privacy