Overview

overview

10

Static

static

10

gozi.dll

windows7-x64

1

gozi.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    gozi.payload-disk

  • Size

    43KB

  • Sample

    220802-y4b8qsafg9

  • MD5

    be90e441c9c4153cd9fc7a2995a57c22

  • SHA1

    938a7b714e598c0d9f029baf6ea4d46fa0eb76ad

  • SHA256

    78ea44028f369c2b99301a5c1ea602c21491fbbdf295d654281b6de0a934a12e

  • SHA512

    deefb05eb99334d507f0c49236be6c48c4ff59d546eff35ec33fd56173216f100a4124c5bd8eeeede05e09513f492cf4bbeb05eee8b18687d7b677894e055701

Score
10/10
gozi_ifsb11111

Malware Config

Extracted

Family

gozi_ifsb

Botnet

11111

C2

trackingg-protectioon.cdn1.mozilla.net

194.76.225.168

194.76.224.242
Attributes
  • base_path

    /fonts/

  • build

    250240

  • exe_type

    loader

  • extension

    .bak

  • server_id

    50

rsa_pubkey.plain
aes.plain

Targets

    • Target

      gozi.payload-disk

    • Size

      43KB

    • MD5

      be90e441c9c4153cd9fc7a2995a57c22

    • SHA1

      938a7b714e598c0d9f029baf6ea4d46fa0eb76ad

    • SHA256

      78ea44028f369c2b99301a5c1ea602c21491fbbdf295d654281b6de0a934a12e

    • SHA512

      deefb05eb99334d507f0c49236be6c48c4ff59d546eff35ec33fd56173216f100a4124c5bd8eeeede05e09513f492cf4bbeb05eee8b18687d7b677894e055701

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks