General
-
Target
Cliente.zip
-
Size
322B
-
Sample
231010-rmt9naea4v
-
MD5
32704cbc3028a3562ef657d59b296f9a
-
SHA1
d2b90f7c7dccc9a4e7722a96045780ccead92974
-
SHA256
4f073919ddc03bc405b70a5d3cc9bcd9946c9491a5870e917b0bf238f6bc2e51
-
SHA512
507a2d5e7d534a5278c65cb2b8bf67d40b98e421e8a1fbaa4282468a77b41bed71734a0f13906f34b0c6819ea6e14aa6ee25b6d3fba4bd8938cf81de77af9e9d
Static task
static1
Behavioral task
behavioral1
Sample
Cliente.url
Resource
win7-20230831-en
Malware Config
Extracted
gozi
Extracted
gozi
5050
45.93.139.24
-
base_path
/jerry/
-
build
250260
-
exe_type
loader
-
extension
.bob
-
server_id
50
Targets
-
-
Target
Cliente.url
-
Size
194B
-
MD5
e8cb7e0b429afab68853fcde2d0910d3
-
SHA1
737c2809fcc4cf61c6c6ed8c2148e4eed77fdd7c
-
SHA256
9cbbd8f990a574e59d15d8f32f1b2442a5faaf57d89e0b4c022651813ff6b3bb
-
SHA512
dda9bc11b0bad298ae544bdd0305ed24704a988b436f43d5b539af8d7138e33d80f0d60e0ad60d81c5af973092625871b83638641c49e55f1a7334b70c431255
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-