Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_79d02687d04a9eb1b551fd47beff70db4a76e1324726efc8a4631086fc98e39c

  • Size

    240KB

  • Sample

    241223-28fcqsvlgl

  • MD5

    a7460d7061649805951e1819258be840

  • SHA1

    852a642fe3023fb46af472b0020e7b569bd2b487

  • SHA256

    79d02687d04a9eb1b551fd47beff70db4a76e1324726efc8a4631086fc98e39c

  • SHA512

    aef4a6aad422ebf15f949e3e3f8f7f72e52e2129a30460777972d4d796a3e59c104f6c65b6a506d0f363bd04e0720824695949e5949884a2f0555593a334c971

  • SSDEEP

    3072:CtLjLpy1qye5zYou/3+tjSk+4uDXXZdXhGuGxjCGqC75PcjKyS:Kbpy1vIk/3+BSkKX7RdGx357

Score
10/10
gozi22500isfb

Malware Config

Extracted

Family

gozi

Botnet

22500

C2

confisg.edge.skype.com

http://5icvzwz.xyz

http://185.14.45.80
Attributes
  • base_path

    /recycle/

  • exe_type

    worker

  • extension

    .alo

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    Tasks