General
-
Target
e99ab57e2060ba04bd6bbd62b3da7c671dee7f768667b298a876a62821736c1f
-
Size
186KB
-
Sample
230129-xnrstabe9z
-
MD5
48e2591c09f94b3f422e46875d62bef3
-
SHA1
111082fb2708aa281b1cda9a4c4fece714089216
-
SHA256
e99ab57e2060ba04bd6bbd62b3da7c671dee7f768667b298a876a62821736c1f
-
SHA512
854d0e111e72e49620a389ae3ed4cbf903bea38bdd225b14208b02149a3197a20dc12d398a2ebbce67f47e6b021a6fc547db642b515598597810340277563eba
-
SSDEEP
3072:INAOhmfyCWmdsiYPk4ijZlgQcA9Xo4/0GyWRgEqUnLxqF9mEGp:TWZxk4mZlvcA91LySgE3nYZe
Static task
static1
Behavioral task
behavioral1
Sample
e99ab57e2060ba04bd6bbd62b3da7c671dee7f768667b298a876a62821736c1f.exe
Resource
win7-20220812-en
Malware Config
Extracted
gozi
Extracted
gozi
6565
updates.microsoft.com
klounisoronws.xyz
darwikalldkkalsld.xyz
-
base_path
/fallback/
-
build
250177
-
dga_season
10
-
exe_type
loader
-
extension
.wet
-
server_id
12
Targets
-
-
Target
e99ab57e2060ba04bd6bbd62b3da7c671dee7f768667b298a876a62821736c1f
-
Size
186KB
-
MD5
48e2591c09f94b3f422e46875d62bef3
-
SHA1
111082fb2708aa281b1cda9a4c4fece714089216
-
SHA256
e99ab57e2060ba04bd6bbd62b3da7c671dee7f768667b298a876a62821736c1f
-
SHA512
854d0e111e72e49620a389ae3ed4cbf903bea38bdd225b14208b02149a3197a20dc12d398a2ebbce67f47e6b021a6fc547db642b515598597810340277563eba
-
SSDEEP
3072:INAOhmfyCWmdsiYPk4ijZlgQcA9Xo4/0GyWRgEqUnLxqF9mEGp:TWZxk4mZlvcA91LySgE3nYZe
-