Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3100-62-0x0000018771DF0000-0x0000018771E2D000-memory.dmp

  • Size

    244KB

  • Sample

    231007-pan6rsec43

  • MD5

    7237e5d16f4bb3b93a59ba79403a85ae

  • SHA1

    07a05860b2571ffbf912879f2d98218887ec66bb

  • SHA256

    db7dac7185eccd654aa74c0121678851ab8215ad627c5dc5ebe5887e2129ffe6

  • SHA512

    714a73ce41b31491fabd13243003e1468013c813453ebbbcb1776828fd9250d3e6da6bf148d3706a34759aa87c865b73f036ad93e9d3198c4d039b006e4a9ed4

  • SSDEEP

    3072:wXmwJT25VVeVqX++WldhnUaA4KT6ntfZFSumtYpFQrxlsULXSTFCr5IcjDt65Wt:wX72v82Wldh1KeRFSbaWrxls+r5T65G

Score
10/10
gozi5050isfb

Malware Config

Extracted

Family

gozi

Botnet

5050

C2

mifrutty.com

systemcheck.top
Attributes
  • base_path

    /pictures/

  • exe_type

    worker

  • extension

    .bob

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    Tasks