Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #Gozi #Ursnif
- ---------------------------
- 31-07-2019
- ---------------------------
- Main object- "0188b6cdf4a3a4c213a36e0760263125e908451518ef66f7a417037c82dcb028.bin.gz"
- sha256 2c1a674aa72b84446ae8dba021aec2cc703957d8a824d31e606e65302ae87f6e
- sha1 8652e84bb2a338d7d7dd5262b043b08fcc09c5f7
- md5 3e4afb598049d1320a838cdc692b1869
- Dropped executable file
- sha256 C:\Users\admin\AppData\Local\Temp\62ea.dll 0e13770b9058074c0f24d56d1f712a1be8cb8d699dc85cb3d8b3831af2a18c96
- DNS requests
- domain powerprivat.ru
- Connections
- ip 95.43.57.155
- HTTP/HTTPS requests
- url http://powerprivat.ru/76976944.bin?ff1
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
