Overview

overview

10

Static

static

10

324-12-0x0...ry.dll

windows7-x64

1

324-12-0x0...ry.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    324-12-0x0000000004A90000-0x0000000004AD0000-memory.dmp

  • Size

    256KB

  • MD5

    c145a242fd8bd9fd275979918441f715

  • SHA1

    f14d5b6e1109f670f57a2b99aec8e5c5b9c1ccda

  • SHA256

    6215e7348ca094d026ab5e62958d8200ff39e80ec6a09f61118cc97d34a2052a

  • SHA512

    a24d0c0a89360fdfc9c4de7900ccc6be379691372e81a0f23699dbc957ee5e1ca9e5e6626462ab71422543387d14976f914478b52b8aee494c829fd6b042f660

  • SSDEEP

    3072:O74OyWSryIBlsfM1hoDHFp4C6QFwsEof0KN6EfZDkzr3WTpi3naf:Odyvry4T1hM4FOEo8KoEfZDe3no

Score
10/10
isfbgozi

Malware Config

Extracted

Family

gozi

Signatures

  • Gozi family
    gozi
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 324-12-0x0000000004A90000-0x0000000004AD0000-memory.dmp
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections