Overview

overview

10

Static

static

10

8d61abfa3c...bc.exe

windows7-x64

7

8d61abfa3c...bc.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    8d61abfa3c3f36f04d0b876f7fb3e7bc

  • Size

    2.9MB

  • MD5

    8d61abfa3c3f36f04d0b876f7fb3e7bc

  • SHA1

    987788fb8b069f2a63a0dc43c60296625b69010d

  • SHA256

    3386c78b8e7f5f5480ce2a477716562f89a2d591d2b947700678d65e1d0295e9

  • SHA512

    8f4fd4ec309d575ea83be0dcb9d900b0cd2edca5cc5d956860f1a4c2af5337789ed229c52f74439c15dd70e4deff2ca1dffd5e760b61871ca16d6d7d070bd265

  • SSDEEP

    49152:p7duzulQx/vbDxwfIXoAxFH9P4M338dB2IBlGuuDVUsdxxjeQZwxPYRKs:phP+Puf2JxFH9gg3gnl/IVUs1jePs

Score
10/10
upxisfbgozi

Malware Config

Extracted

Family

gozi

Signatures

  • Gozi family
    gozi
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 8d61abfa3c3f36f04d0b876f7fb3e7bc
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections