General

  • Target

    75e3028aa0c2dfb079a4bf42a11bf65c6265d539fa4b6cb600cf144bdfba5df9

  • Size

    268KB

  • Sample

    220205-rj7etacdap

  • MD5

    24a6c88dcfee6a383df668ceb40b161f

  • SHA1

    b032090a09d6f0c0f85f0e6c54e0e1123704be9e

  • SHA256

    75e3028aa0c2dfb079a4bf42a11bf65c6265d539fa4b6cb600cf144bdfba5df9

  • SHA512

    519c77fd4cf92118cb33644fca45c069e0bb90181e4840697527f9a887156af1671aff6e4d13b7e704006703cb25ab1e29c01b8578255103bcc9c677fc819eab

Malware Config

Extracted

Family

gozi_ifsb

Attributes
  • build

    214131

Targets

    • Target

      75e3028aa0c2dfb079a4bf42a11bf65c6265d539fa4b6cb600cf144bdfba5df9

    • Size

      268KB

    • MD5

      24a6c88dcfee6a383df668ceb40b161f

    • SHA1

      b032090a09d6f0c0f85f0e6c54e0e1123704be9e

    • SHA256

      75e3028aa0c2dfb079a4bf42a11bf65c6265d539fa4b6cb600cf144bdfba5df9

    • SHA512

      519c77fd4cf92118cb33644fca45c069e0bb90181e4840697527f9a887156af1671aff6e4d13b7e704006703cb25ab1e29c01b8578255103bcc9c677fc819eab

    • Gozi, Gozi IFSB

      Gozi ISFB is a well-known and widely distributed banking trojan.

    • suricata: ET MALWARE Ursnif Variant CnC Beacon - URI Struct M1 (_2B)

      suricata: ET MALWARE Ursnif Variant CnC Beacon - URI Struct M1 (_2B)

MITRE ATT&CK Enterprise v6

Tasks