Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    812-53-0x000001A07E460000-0x000001A07E49D000-memory.dmp

  • Size

    244KB

  • Sample

    231006-n8mvxsdb94

  • MD5

    46cc63328d68faae91a1f8ad865106b5

  • SHA1

    602ae2b67104abe58e7a6d95c2d1aa0fe1bfba09

  • SHA256

    ea4f453acf0b31ebcaf298aa0576ce92bc6881d6bfbd971d66dd5e4f10355e90

  • SHA512

    80dfb6f6a3fe41071fb264d92beae790635db723baa08966744a4c59ed6c4c3afe6cc1a6428a92897506bac765d66686c3143bdd7ee795a77ad2e1a9d1da3ad1

  • SSDEEP

    6144:7X72v82Wldh1KeRFSbaWrxlsKr5f+7zV5G:7L2v8znYSSeWr4K9+7

Score
10/10
gozi5050isfb

Malware Config

Extracted

Family

gozi

Botnet

5050

C2

mifrutty.com

systemcheck.top
Attributes
  • base_path

    /pictures/

  • exe_type

    worker

  • extension

    .bob

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    Tasks