gozi | 78fed40495b176adaf7093f946a1ee07cd7cf455858804e08446571bc8be799a | Triage

Sharing

General

Target

78fed40495b176adaf7093f946a1ee07cd7cf455858804e08446571bc8be799a.dll
Size

83KB
Sample

221124-et8z6sge57
MD5

cde05576e7c48ca89d2f21c283a4a018
SHA1

bc59a41e64b6f2940bfcb48a1fd5345395505a96
SHA256

78fed40495b176adaf7093f946a1ee07cd7cf455858804e08446571bc8be799a
SHA512

7fb471b034e35e06927902c72f1eba2d2b0d246028fca587302d518b39e0e8e9be9d43702199e781a0d6b1cb5db6cd4d3f2b0b177477fe0882b8a6b0f6c76802
SSDEEP

1536:ogWi5BVVWsfV/hAq/ctyaAkFc+evm4VtMQtC6:jWqBVVJfVJaytAJCtn

Score

10^/10

gozi 202206061 ldr4

Malware Config

Extracted

Family

gozi

Botnet

202206061

C2

https://gigimas.xyz

https://reaso.xyz

Attributes

host_keep_time
60
host_shift_time
60
idle_time
20
request_time
10

aes.plain

Targets

- Target
  
  78fed40495b176adaf7093f946a1ee07cd7cf455858804e08446571bc8be799a.dll
- Size
  
  83KB
- MD5
  
  cde05576e7c48ca89d2f21c283a4a018
- SHA1
  
  bc59a41e64b6f2940bfcb48a1fd5345395505a96
- SHA256
  
  78fed40495b176adaf7093f946a1ee07cd7cf455858804e08446571bc8be799a
- SHA512
  
  7fb471b034e35e06927902c72f1eba2d2b0d246028fca587302d518b39e0e8e9be9d43702199e781a0d6b1cb5db6cd4d3f2b0b177477fe0882b8a6b0f6c76802
- SSDEEP
  
  1536:ogWi5BVVWsfV/hAq/ctyaAkFc+evm4VtMQtC6:jWqBVVJfVJaytAJCtn
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

ldr4202206061gozi

behavioral1

behavioral2