Overview

overview

10

Static

static

fbb64e3ae3...04.exe

windows7_x64

10

fbb64e3ae3...04.exe

windows10_x64

10

Analysis

  • max time kernel
    36s
  • max time network
    39s
  • platform
    windows7_x64
  • resource
    win7v20210410
  • submitted
    13-05-2021 02:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fbb64e3ae33dd18c9fa9e58b83c23a9ecb2256c8ba510d321d292f2041da7004.exe

  • Size

    288KB

  • MD5

    119e87bcf548d2c87e08f3785a46d12a

  • SHA1

    f36c4c87b3cdc1c6b8ee1a5389e3b3634729aa2b

  • SHA256

    fbb64e3ae33dd18c9fa9e58b83c23a9ecb2256c8ba510d321d292f2041da7004

  • SHA512

    170d0e0c0c2b33771d56eedeedb8efe96a29c332c13580f374b7a8d888d6320857626e5b80fba10125c45d2d5c29b87a9313c66a69a3cdeb4f92f460a2f502ce

Score
10/10
gozi_ifsbbankertrojan

Malware Config

Extracted

Family

gozi_ifsb

Attributes
  • build

    217173

  • exe_type

    loader

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\fbb64e3ae33dd18c9fa9e58b83c23a9ecb2256c8ba510d321d292f2041da7004.exe
    "C:\Users\Admin\AppData\Local\Temp\fbb64e3ae33dd18c9fa9e58b83c23a9ecb2256c8ba510d321d292f2041da7004.exe"
    1⤵
      PID:1268

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1268-59-0x0000000075591000-0x0000000075593000-memory.dmp
      Filesize

      8KB

      Download
    • memory/1268-61-0x0000000000210000-0x0000000000261000-memory.dmp
      Filesize

      324KB

      Download
    • memory/1268-60-0x0000000000210000-0x000000000021F000-memory.dmp
      Filesize

      60KB

      Download
    • memory/1268-62-0x0000000000200000-0x0000000000201000-memory.dmp
      Filesize

      4KB

      Download