General

  • Target

    6e7379adc4d0a4c7a490c588f5a684238f2bdd1c80f87bca778d80bd75924dbd

  • Size

    3.4MB

  • MD5

    95f88264cad98acc0e8bcc555a3dd286

  • SHA1

    732c9bada2924c2bebb4026abbfef2017deed776

  • SHA256

    6e7379adc4d0a4c7a490c588f5a684238f2bdd1c80f87bca778d80bd75924dbd

  • SHA512

    ef5d29f90ffbc24f9c05fe46fdda558f33288e08f314ed7e02939e74a0936d22748db9939171537b60adb55eebeaedb393c412bbb17af4020252a562742c7b1c

  • SSDEEP

    49152:yEjEamQb2OguN8Dfk5JEG14wv2QwnN4iTapOcaPKfjtD8cEOxeuxzS2hPV5T1gWj:yEjlmQbfgSgwvSnN4iVJuS0xJdzYUq6

Score
10/10

Malware Config

Extracted

Family

gozi

Signatures

  • Gozi family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 6e7379adc4d0a4c7a490c588f5a684238f2bdd1c80f87bca778d80bd75924dbd
    .exe windows:5 windows x86

    da615ad92cf6c6d9159a7eb2aceeb372


    Headers

    Imports

    Sections