Overview

overview

10

Static

static

10

1036-57-0x...ry.dll

windows7-x64

1

1036-57-0x...ry.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1036-57-0x0000000004AA0000-0x0000000004AE0000-memory.dmp

  • Size

    256KB

  • MD5

    e965f66e5b56c2105b772065e1b2a481

  • SHA1

    71bdb1c22bd4d93b7248e10c700eacc752aa0583

  • SHA256

    f941107cf446fca2513ac2d3fc12988cc05fbb7c4079095f8c45d6775239b296

  • SHA512

    1dfabaaaa79c38214fe5b036f8866a155c0dc9b6058a34dc3cb469f9375c0b31be5b421417c28e1433f2c1d350bede8d2ff0bbcd3cf06448601d5f27689659cf

  • SSDEEP

    6144:Xb7eFQN9aq3cqt4IyjHJ1wMk5EE/QlSONJVvY/bMsw4LWGdCs6Kop:Xb7eFQHaqMqt4IyjHJ1wMk5EE/QlSON7

Score
10/10
isfbgozi

Malware Config

Extracted

Family

gozi

Signatures

  • Gozi family
    gozi
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1036-57-0x0000000004AA0000-0x0000000004AE0000-memory.dmp
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections