General

  • Target

    ab6a5fcf478d31181ea0e96f42ad1c2cb2f7dc056cdb7dbc06cb007f75902bf0

  • Size

    382KB

  • MD5

    0c9b30c85cb587a3c17f64ff2ce347c9

  • SHA1

    005cf3cfa64ecb1c5868fba1877993e38bebd13a

  • SHA256

    ab6a5fcf478d31181ea0e96f42ad1c2cb2f7dc056cdb7dbc06cb007f75902bf0

  • SHA512

    09ef2ac19691d53ee889b569ed3e3df364829ec2a1943c2d9c2e0c513d16f0f33aa17db2de86c26fcfebb4c2c140e2bb913bff850f6474d843ce94e0f38bc01b

  • SSDEEP

    6144:qcf6yT7WUAUc8t77R0/oUtowzxoS0UTGFOnPE7PLsZtOAVboTf1Yui:qPcaUt77R2xoS0UTG2PkPoZcEoTfVi

Score
10/10

Malware Config

Signatures

  • Gozi_ifsb family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

Files

  • ab6a5fcf478d31181ea0e96f42ad1c2cb2f7dc056cdb7dbc06cb007f75902bf0
    .exe windows x86


    Code Sign

    Headers

    Sections