d4b2377c5f9af91cc693fce967f3049ab4c6ec75c162276b584002946203a770

General
Target

d4b2377c5f9af91cc693fce967f3049ab4c6ec75c162276b584002946203a770

Size

162KB

Sample

211021-xefn7aafc9

Score
10 /10
MD5

fc00657a0e9c136b3381604e2510c9a4

SHA1

ac944c1863937b91c04f8d814a91ff31de442af5

SHA256

d4b2377c5f9af91cc693fce967f3049ab4c6ec75c162276b584002946203a770

SHA512

96811bb08f82f0a9a11c23d77097a59d3e724d6f26c31b1ebbc74277e6f2506b065a97cb6fa12af5b0c485e6c2f2c9d72f8b8de008efc75a33310d6636d94584

Malware Config
Targets
Target

d4b2377c5f9af91cc693fce967f3049ab4c6ec75c162276b584002946203a770

MD5

fc00657a0e9c136b3381604e2510c9a4

Filesize

162KB

Score
10 /10
SHA1

ac944c1863937b91c04f8d814a91ff31de442af5

SHA256

d4b2377c5f9af91cc693fce967f3049ab4c6ec75c162276b584002946203a770

SHA512

96811bb08f82f0a9a11c23d77097a59d3e724d6f26c31b1ebbc74277e6f2506b065a97cb6fa12af5b0c485e6c2f2c9d72f8b8de008efc75a33310d6636d94584

Tags

Signatures

  • Gozi, Gozi IFSB

    Description

    Gozi ISFB is a well-known and widely distributed banking trojan.

    Tags

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10

                          behavioral2

                          10/10