759e055bf47a9ce1a7fce3e3276120f3.dll

General
Target

759e055bf47a9ce1a7fce3e3276120f3.dll

Size

130KB

Sample

210504-qv5jveg1tj

Score
10 /10
MD5

759e055bf47a9ce1a7fce3e3276120f3

SHA1

d6de742f6caf13d4a9aa75287d041596fbcea73a

SHA256

d8bcf8beebb5ab690b52094df6317f023f62f044e8107508d84d06d4700fe81a

SHA512

7bba491da19915bc7719063206b8718d061641d12d833979cc27136811b40ec1fa1ab913d3847c7068f90b2a90706bd288cb62342f62c294fc2d140f88fa1b7b

Malware Config

Extracted

Family gozi_ifsb
Attributes
build
250187
exe_type
loader
rsa_pubkey.base64
Targets
Target

759e055bf47a9ce1a7fce3e3276120f3.dll

MD5

759e055bf47a9ce1a7fce3e3276120f3

Filesize

130KB

Score
10 /10
SHA1

d6de742f6caf13d4a9aa75287d041596fbcea73a

SHA256

d8bcf8beebb5ab690b52094df6317f023f62f044e8107508d84d06d4700fe81a

SHA512

7bba491da19915bc7719063206b8718d061641d12d833979cc27136811b40ec1fa1ab913d3847c7068f90b2a90706bd288cb62342f62c294fc2d140f88fa1b7b

Tags

Signatures

  • Gozi, Gozi IFSB

    Description

    Gozi ISFB is a well-known and widely distributed banking trojan.

    Tags

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10

                          behavioral2

                          10/10