Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4540-95-0x000002546DBF0000-0x000002546DC2D000-memory.dmp

  • Size

    244KB

  • Sample

    231010-w51llshg27

  • MD5

    f6e780c3e542503a11e7c7b967bf417f

  • SHA1

    aca9a21716692071a8756da28b15b70b5093185d

  • SHA256

    5b7e62450e999120cb50850b1eb9a90ad7b889c533ac89c69fc6fd77318ee905

  • SHA512

    d4083bf530f2cef32b61d9f729bd0ecd183a4db8a0b533f647672f4807845fc7e79dac5deb2901d7ec6e84e607654ee21024d13b1307f176d704136e3346b5de

  • SSDEEP

    3072:uXmwJT25VVeVqX++WldhnUaA4KT6ntfZFSumtYpFQrxlswXSTFCr5IcjECKr5Wt:uX72v82Wldh1KeRFSbaWrxlswr5M5G

Score
10/10
gozi5050isfb

Malware Config

Extracted

Family

gozi

Botnet

5050

C2

mifrutty.com

systemcheck.top
Attributes
  • base_path

    /pictures/

  • exe_type

    worker

  • extension

    .bob

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    Tasks