Overview

overview

10

Static

static

3

dbbd275a4b...5a.dll

windows7-x64

10

dbbd275a4b...5a.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dbbd275a4b1da0b93a1ef2c5e7c75f5f020979dcc502fd1bc28b3b40cf1d255a.exe

  • Size

    187KB

  • Sample

    230604-zbapwaec6t

  • MD5

    600764b14a6e39961594ed8e67c3eeb6

  • SHA1

    5b5cc61391968958236d54eb0fe7229386b58c64

  • SHA256

    dbbd275a4b1da0b93a1ef2c5e7c75f5f020979dcc502fd1bc28b3b40cf1d255a

  • SHA512

    a7636a755d816f386ec650648f96ab4c55ddd05bd607ca59868e66af079e0e9b829947d407e17bd68c1208d6ae7f985f602388270289cab9ba26d253f2f38c18

  • SSDEEP

    3072:Q4+YN4lPeFpVa5f8gy5q86UIQz+GypacRLu1O+TvTIGapG4S+1prXFnK:cCQ7y5qzzJpVRLu1fcjDV9K

Score
10/10
gozi1000bankerldr4trojan

Malware Config

Extracted

Family

gozi

Extracted

Family

gozi

Botnet

1000

C2

https://vertalis.top

Attributes
  • host_keep_time

    2

  • host_shift_time

    1

  • idle_time

    1

  • request_time

    10

aes.plain

Targets

    • Target

      dbbd275a4b1da0b93a1ef2c5e7c75f5f020979dcc502fd1bc28b3b40cf1d255a.exe

    • Size

      187KB

    • MD5

      600764b14a6e39961594ed8e67c3eeb6

    • SHA1

      5b5cc61391968958236d54eb0fe7229386b58c64

    • SHA256

      dbbd275a4b1da0b93a1ef2c5e7c75f5f020979dcc502fd1bc28b3b40cf1d255a

    • SHA512

      a7636a755d816f386ec650648f96ab4c55ddd05bd607ca59868e66af079e0e9b829947d407e17bd68c1208d6ae7f985f602388270289cab9ba26d253f2f38c18

    • SSDEEP

      3072:Q4+YN4lPeFpVa5f8gy5q86UIQz+GypacRLu1O+TvTIGapG4S+1prXFnK:cCQ7y5qzzJpVRLu1fcjDV9K

    Score
    10/10
    gozi1000bankerldr4trojan

    • Gozi

      Gozi is a well-known and widely distributed banking trojan.

      bankertrojangozi
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks