Overview

overview

10

Static

static

7fe6c2028f...c3.dll

windows7-x64

10

7fe6c2028f...c3.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7fe6c2028f8d53ce4f2bd5252d7d5f97226fc92231b07e6d55e9b1a12b3c55c3

  • Size

    206KB

  • Sample

    220725-fa7tfafcam

  • MD5

    1d6c784c236b7bb569f473f2d875d2ed

  • SHA1

    45a131931d171a66184a7194b095f3e25f3b851c

  • SHA256

    7fe6c2028f8d53ce4f2bd5252d7d5f97226fc92231b07e6d55e9b1a12b3c55c3

  • SHA512

    e60fd6c4c530472fad613daec2c5f5d21c74b86dc921b5752ac3e935046dc138d61d8ef4f86198c84c507ca9fd4278012a7dd4966626a2045cedbde47b56a277

Score
10/10
gozi_ifsbbankersuricatatrojan

Malware Config

Targets

    • Target

      7fe6c2028f8d53ce4f2bd5252d7d5f97226fc92231b07e6d55e9b1a12b3c55c3

    • Size

      206KB

    • MD5

      1d6c784c236b7bb569f473f2d875d2ed

    • SHA1

      45a131931d171a66184a7194b095f3e25f3b851c

    • SHA256

      7fe6c2028f8d53ce4f2bd5252d7d5f97226fc92231b07e6d55e9b1a12b3c55c3

    • SHA512

      e60fd6c4c530472fad613daec2c5f5d21c74b86dc921b5752ac3e935046dc138d61d8ef4f86198c84c507ca9fd4278012a7dd4966626a2045cedbde47b56a277

    Score
    10/10
    gozi_ifsbbankertrojansuricata

    • Gozi, Gozi IFSB

      Gozi ISFB is a well-known and widely distributed banking trojan.

      bankertrojangozi_ifsb

    • suricata: ET MALWARE Possible Ursnif/Gamaredon Related VNC Module CnC Beacon

      suricata: ET MALWARE Possible Ursnif/Gamaredon Related VNC Module CnC Beacon

      suricata

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks