gozi | 3116-178-0x0000000008640000-0x00000000086E3000-memory[.]dmp | Triage

Submit
Reports

Overview

overview

Static

static

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

General

Target

3116-178-0x0000000008640000-0x00000000086E3000-memory.dmp
Size

652KB
MD5

2d5af7a5767165df2918057ff24d678a
SHA1

49c1fb758adb5004e64d009f1b7164c64c40b660
SHA256

046e65c383138067b7fec594f1a53419efd23ad2b755f4127233169e149f1c78
SHA512

44b02b8a9f69391b7dc9f5033486872a64700b1ae4ecc82530091909600d2b9c76bb91b71e1e1770b9c4c71ef3f243758136b1f5cffe185f0385c2939724da22
SSDEEP

12288:TgrRK2P8EpMPss84eT5MVvtOPAOE/hUz3Sv/z/2mnLqSyrX51qLM:cQ2PqPsspeCRtONEZPjdqlrp1/

Score

10^/10

isfb 5050 gozi

Malware Config

Extracted

Family

gozi

Botnet

5050

C2

https://fazzd.bing.com/check

dretils.com

Attributes

base_path
/pictures/
exe_type
worker
extension
.bob
server_id
50

rsa_pubkey.plain

aes.plain

Signatures

Gozi family
gozi

Files

3116-178-0x0000000008640000-0x00000000086E3000-memory.dmp

© 2018-2025

Terms | Privacy