General
-
Target
96691a5722177bd3b92d898458b51bf624a6fd3c83ba03f6c1a9c2088171931e
-
Size
398KB
-
Sample
230129-xxgn7sae29
-
MD5
a2f914433461b45fc5505e9f89683625
-
SHA1
a004c119c923990c3cc93c4eff5dcf4a7cf45bf6
-
SHA256
96691a5722177bd3b92d898458b51bf624a6fd3c83ba03f6c1a9c2088171931e
-
SHA512
e0bed07bb6f97c0e685ece31654c2bb147d78a11530740451376b267738e6af430f13c5e5b50d96ec4ba81d2a9c770a2f085c3b5ba38ec6078eb4a0b2e196ba8
-
SSDEEP
12288:skELFg2bL3yXTmLwkHIvJuXK1+OB0wmylK+IUGJH+O:sxy2wm9R+O
Static task
static1
Behavioral task
behavioral1
Sample
96691a5722177bd3b92d898458b51bf624a6fd3c83ba03f6c1a9c2088171931e.dll
Resource
win7-20220901-en
Malware Config
Extracted
gozi
Extracted
gozi
5500
windows.update.com
shop.microsoft.com
fraloopilo.xyz
paladingrazz.xyz
-
base_path
/manifest/
-
build
250177
-
dga_season
10
-
exe_type
loader
-
extension
.cnx
-
server_id
12
Targets
-
-
Target
96691a5722177bd3b92d898458b51bf624a6fd3c83ba03f6c1a9c2088171931e
-
Size
398KB
-
MD5
a2f914433461b45fc5505e9f89683625
-
SHA1
a004c119c923990c3cc93c4eff5dcf4a7cf45bf6
-
SHA256
96691a5722177bd3b92d898458b51bf624a6fd3c83ba03f6c1a9c2088171931e
-
SHA512
e0bed07bb6f97c0e685ece31654c2bb147d78a11530740451376b267738e6af430f13c5e5b50d96ec4ba81d2a9c770a2f085c3b5ba38ec6078eb4a0b2e196ba8
-
SSDEEP
12288:skELFg2bL3yXTmLwkHIvJuXK1+OB0wmylK+IUGJH+O:sxy2wm9R+O
-