General
-
Target
neve.zip
-
Size
556KB
-
Sample
221027-tkf1cscfh2
-
MD5
9f68d1a4b33e3ace6215040dc9fc73e8
-
SHA1
cfcbcbefd9967320a60c6890775930a0634f1341
-
SHA256
d2fc2e2b90b23c2a91e144fd8ac22668dd682f7d0145963615203d087c48aca4
-
SHA512
5b86c512d894e81c4f9533f3c9e642288256c9fbeaa175b2f3a78409616207c132898cf243bc9f55dc3f6db80e39e666373d301b6539bf2ab31353474f5b53c4
-
SSDEEP
12288:Nxz8UNfabvFrNIOSUBneHnYvbXb1teVcrS+guzo2I:N2io3IOSgeW7f0cW+gST
Static task
static1
Behavioral task
behavioral1
Sample
neve.dll
Resource
win7-20220812-en
Malware Config
Extracted
gozi
202206061
https://gigimas.xyz
https://reaso.xyz
-
host_keep_time
60
-
host_shift_time
60
-
idle_time
20
-
request_time
10
Extracted
gozi
Targets
-
-
Target
neve.zip
-
Size
556KB
-
MD5
9f68d1a4b33e3ace6215040dc9fc73e8
-
SHA1
cfcbcbefd9967320a60c6890775930a0634f1341
-
SHA256
d2fc2e2b90b23c2a91e144fd8ac22668dd682f7d0145963615203d087c48aca4
-
SHA512
5b86c512d894e81c4f9533f3c9e642288256c9fbeaa175b2f3a78409616207c132898cf243bc9f55dc3f6db80e39e666373d301b6539bf2ab31353474f5b53c4
-
SSDEEP
12288:Nxz8UNfabvFrNIOSUBneHnYvbXb1teVcrS+guzo2I:N2io3IOSgeW7f0cW+gST
-
Blocklisted process makes network request
-