Overview

overview

10

Static

static

10

6c135acf82...b2.exe

windows7-x64

7

6c135acf82...b2.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    6c135acf824a7ac39461d5791b2c7bb2

  • Size

    2.9MB

  • MD5

    6c135acf824a7ac39461d5791b2c7bb2

  • SHA1

    f64e6562d735e2b5584348bfb816669f1bebe5c5

  • SHA256

    cabcee3db470f681abf7f65bd3aa81a1068faebbe5afff3284355ea09d45fc1a

  • SHA512

    a6056af78ffabb34659ec583039577203c438be1538992e2ca89501205dcfbbe0ad9074d23ea2771ff124af41bd93f9fc32fdc34f36a313a35cee5889634ffc6

  • SSDEEP

    49152:p7duzulQx/vbDxwfIXoAxFHPsCo0MupTVYhnVziQ/BhCSxvsp2:phP+Puf2JxFHPsjJNziQ/PLvsp2

Score
10/10
upxisfbgozi

Malware Config

Extracted

Family

gozi

Signatures

  • Gozi family
    gozi
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 6c135acf824a7ac39461d5791b2c7bb2
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections