Overview

overview

10

Static

static

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_fe1efd2290856399e14357196dd8765e2afcffae320e0a85269208d82a46a356

  • Size

    240KB

  • Sample

    241223-t7yhxsvpam

  • MD5

    063794a574ee1f9eab1b6eb8c80dc9e6

  • SHA1

    3c012ef3d9952c3917663b98e3113ccbd44ce3db

  • SHA256

    fe1efd2290856399e14357196dd8765e2afcffae320e0a85269208d82a46a356

  • SHA512

    7bd415bb7ee9efb89b59b336812a820f655bfe615d38c8cde886baf324856d51c08a4d9954a048b3ec142ef84cf4f4287f2796026b6f39c2563a6542e3b48d94

  • SSDEEP

    3072:4tLjLpy1qye5zYou/3+tjSk+4uDXXZdXhGuGjjCGqC75Pcj5B+P:gbpy1vIk/3+BSkKX7RdGj35jP

Score
10/10
gozi22500isfb

Malware Config

Extracted

Family

gozi

Botnet

22500

C2

confisg.edge.skype.com

http://s28bxcw.xyz

http://89.43.107.7
Attributes
  • base_path

    /recycle/

  • exe_type

    worker

  • extension

    .alo

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    Tasks