gozi_ifsb | d25a610f735383649e5e4d48cd370fee127c04e101cf8e922e96d4ce88991cd9 | Triage

Sharing

General

Target

kpt4cab
Size

196KB
Sample

200709-vl2vdb5k2e
MD5

24d036b68b3a1d64261e69f0a579f5d1
SHA1

da8f942c661a951b6d91bd66e15d093bcb0864ec
SHA256

d25a610f735383649e5e4d48cd370fee127c04e101cf8e922e96d4ce88991cd9
SHA512

f279b5fdf4a1114e7e19d1e930e589aa9c82cbde18a834beb59de77778c5b17d9a046410fa70c39c48273a9f809093ed01d88741f318783976e84c36e0d67fc7

Score

10^/10

gozi_ifsb banker trojan

Malware Config

Targets

- Target
  
  kpt4cab
- Size
  
  196KB
- MD5
  
  24d036b68b3a1d64261e69f0a579f5d1
- SHA1
  
  da8f942c661a951b6d91bd66e15d093bcb0864ec
- SHA256
  
  d25a610f735383649e5e4d48cd370fee127c04e101cf8e922e96d4ce88991cd9
- SHA512
  
  f279b5fdf4a1114e7e19d1e930e589aa9c82cbde18a834beb59de77778c5b17d9a046410fa70c39c48273a9f809093ed01d88741f318783976e84c36e0d67fc7
Score

10^/10

banker trojan gozi_ifsb
- Gozi, Gozi IFSB
  Gozi ISFB is a well-known and widely distributed banking trojan.
  banker trojan gozi_ifsb
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bankertrojangozi_ifsb

behavioral2

bankertrojangozi_ifsb