Overview

overview

10

Static

static

10

1e1bb50d1b...fd.exe

windows7-x64

7

1e1bb50d1b...fd.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1e1bb50d1b247baf60f2243e42760efd

  • Size

    1010KB

  • MD5

    1e1bb50d1b247baf60f2243e42760efd

  • SHA1

    dce135f07d0e3263f586778b0ed2608863ba423a

  • SHA256

    533d962d2084f6306f40dca33c5a5a0a8408e61adc24b95fb13fccc161d178d7

  • SHA512

    5d70940a91bcbaceb1f97f37a2ede74afed15b78728ed7d02ebb4e2f6c18b536d2d8e3fee21ceee61332dac3dac7f95cb890419958213e293bd11c9762c931f0

  • SSDEEP

    12288:Vnjp8km4egkhfFYTfm6hiYc5plDFwrilMiYTfm:jvmfBmfduvlB7lbmf

Score
10/10
upxisfbgozi

Malware Config

Extracted

Family

gozi

Signatures

  • Gozi family
    gozi
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1e1bb50d1b247baf60f2243e42760efd
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections