General
-
Target
Documenti.zip
-
Size
326B
-
Sample
231010-pg6pdsdd6s
-
MD5
902f6266e8e0b95c2801839ecd926a29
-
SHA1
989ec5b1787b96a81f8535df4e0f8debcbdc8132
-
SHA256
a43f7e57a2a6e00480baf95d1e9c82332796fbb4b4873046bd1ac9bca4f68075
-
SHA512
99892a65bf036d927970a8cf3377d62681771052ae296c08f003f977f30883fdc14d9c8c0726d037f5e340d3fed2a7d918e2ee7545a66219e4569769709206e0
Static task
static1
Behavioral task
behavioral1
Sample
Documenti.url
Resource
win7-20230831-en
Malware Config
Extracted
gozi
Extracted
gozi
5050
45.93.139.24
-
base_path
/jerry/
-
build
250260
-
exe_type
loader
-
extension
.bob
-
server_id
50
Targets
-
-
Target
Documenti.url
-
Size
193B
-
MD5
605a545fcf4bdb9f72cccce6f96c3b00
-
SHA1
3f46e6be5166cbe2e998f82d7bc43485c26ddbcf
-
SHA256
96a8224726b8ce8b29315536fb4b1ed66f568f9a97c0d630316dba3e5b6a5a3e
-
SHA512
9a70438d175c889d05e97e69ad284a5f206aa7b8267f3e7c33ee8413580bbc83dec603d16ad30550e046badbc1650ab742e02781880e7a11ae9abe0983dfbd0e
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-