General
-
Target
44d8bc6a61f9c11e9aa98aeed69a7e2d
-
Size
908KB
-
Sample
231226-aaj5gscea9
-
MD5
44d8bc6a61f9c11e9aa98aeed69a7e2d
-
SHA1
d593b6ac9236a389b896aff9bcda6a220cb72ad5
-
SHA256
e567bcf0bca47200abc2da735defe14ae36adabc3fcef460877e0ef61041075b
-
SHA512
e7ab5b9c542d47a6d15512e7cca71313b71c087f1d6c2c106d0f32ed6f2469e696f98d6857e607f660a4f1ff7ca8dcb0aba8c6d808ba1ca3dc43e6a34ff15d47
-
SSDEEP
1536:tV7RSS9YSCSISCShSCSxAGzsCTXYtFBo45GQG770gSvc1RIVLmyLmRgRLuLkutb+:JuAGBTYzGHsNv6xgRK4VljQaeA
Behavioral task
behavioral1
Sample
44d8bc6a61f9c11e9aa98aeed69a7e2d.exe
Resource
win7-20231215-en
Malware Config
Extracted
gozi
-
build
300854
Extracted
gozi
202004141
https://devicelease.xyz
-
build
300854
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
-
url_path
index.htm
Targets
-
-
Target
44d8bc6a61f9c11e9aa98aeed69a7e2d
-
Size
908KB
-
MD5
44d8bc6a61f9c11e9aa98aeed69a7e2d
-
SHA1
d593b6ac9236a389b896aff9bcda6a220cb72ad5
-
SHA256
e567bcf0bca47200abc2da735defe14ae36adabc3fcef460877e0ef61041075b
-
SHA512
e7ab5b9c542d47a6d15512e7cca71313b71c087f1d6c2c106d0f32ed6f2469e696f98d6857e607f660a4f1ff7ca8dcb0aba8c6d808ba1ca3dc43e6a34ff15d47
-
SSDEEP
1536:tV7RSS9YSCSISCShSCSxAGzsCTXYtFBo45GQG770gSvc1RIVLmyLmRgRLuLkutb+:JuAGBTYzGHsNv6xgRK4VljQaeA
-