General
-
Target
1056-67-0x0000000004BB0000-0x0000000004BF0000-memory.dmp
-
Size
256KB
-
MD5
c9fb145df97223f26015212fd9c3c744
-
SHA1
aa6a94315e2ecb604b0fe96a6c01f9397eccc3cb
-
SHA256
224058885d117b28b689211de6fd5c181ab144f1914b864941b6fee19c339e04
-
SHA512
9386cd758444d02c070f04d0ffa096b097ab443dbb796a6d69731436a5ca2adc9a9b4c6345efae50b8a5e5fa6a8595e784f23c0190aa7fab6c98ba8763686100
-
SSDEEP
6144:MYTBf6ocJfA2ejYD0TFbLXh9YTBf6ocJfA2ejYD0TFbLX4:MYTl6ocJtejGsxLHYTl6ocJtejGsxLo
Score
10/10
Malware Config
Extracted
Family
gozi
Extracted
Family
gozi
Signatures
-
Gozi family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1056-67-0x0000000004BB0000-0x0000000004BF0000-memory.dmp
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections