General
-
Target
2056-40-0x00000000006D0000-0x0000000000710000-memory.dmp
-
Size
256KB
-
MD5
73d69e397ef339d70a8d814c4dea7ab8
-
SHA1
89da416566f6a8ceeea11116b072c7d6c59b6b8d
-
SHA256
579deda6ac0d953a5f50b7b18f218d1c07d58012b4ba031c00e557602d07c395
-
SHA512
b01ff9bdf1cee42bbbff0d1d55cc8ef0cbd3ab94a01c7d06d97b49be5d50caabcee8de5c43bf802dcdf9a85b36afe0e325741d832c0086e45b919686a63dcc10
-
SSDEEP
6144:NYTBf6ocJfA2ejYD0TFbLXhGhXA5aI4g67vs:NYTl6ocJtejGsxLEhXA5v4g6js
Score
10/10
Malware Config
Extracted
Family
gozi
Extracted
Family
gozi
Signatures
-
Gozi family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2056-40-0x00000000006D0000-0x0000000000710000-memory.dmp
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections