Analysis
-
max time kernel
141s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20230831-en -
resource tags
arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system -
submitted
10-10-2023 08:53
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
progetto.exe
Resource
win7-20230831-en
windows7-x64
1 signatures
150 seconds
General
-
Target
progetto.exe
-
Size
294KB
-
MD5
6d32ac033adb9b55fb46ce1e5ed10c46
-
SHA1
e1465c0f776de37b7ac8542ead24466a26da2f47
-
SHA256
31f983668db02626b9c65b0f2fc7d14b59400c485d4ffc88418f3f76bf62ef85
-
SHA512
b51b5aaa3eba789efc25d83e0ef8171935d191cef7bb7d5ab8ae958804a4094058aef1848a04bbea11dd38f1c0fcf41c5115bb03dcc2c8e6f70cc319b5af06a0
-
SSDEEP
3072:Ol2zlWKeqCK79VaVvYYjToBX0RQHUs3Zox1EsMD/aT:noKeqC6sHT60Cv3ZoJM
Malware Config
Extracted
Family
gozi
Extracted
Family
gozi
Botnet
5050
C2
193.203.162.14
Attributes
-
base_path
/jerry/
-
build
250260
-
exe_type
loader
-
extension
.bob
-
server_id
50
rsa_pubkey.plain
aes.plain