General

  • Target

    b9e7ab65230fea95a7e5ef46aee7a89c888d8f8d75aa7bd94a8ae613a31ab404

  • Size

    750KB

  • MD5

    d1df4c1bac9aa943c9ecd985cb27701d

  • SHA1

    1a37e5905469cea9ddb8ef0132fbab97ffe053fc

  • SHA256

    b9e7ab65230fea95a7e5ef46aee7a89c888d8f8d75aa7bd94a8ae613a31ab404

  • SHA512

    02821ba49634d31f7180de49f4be7dc396f95b6ea23b5fc9fe579e3d3d272bbac8e53ba886bc39e42a2ddb569c0f20e745dce54156dbff4a30d14a6f8907f613

  • SSDEEP

    12288:uYsur1foGlRRWhb1KIfXeJbDHDmZ7/F1GYvZROoSCoTfhxcn15MPC/cHUioS:yqDiBRfeNDC5d1GYRRODh2iH

Score
10/10

Malware Config

Signatures

  • Gozi_ifsb family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

Files

  • b9e7ab65230fea95a7e5ef46aee7a89c888d8f8d75aa7bd94a8ae613a31ab404
    .exe windows x86


    Code Sign

    Headers

    Sections