gozi | 40cb4cecad3e64f0f099d4dc888534b1

General

Target

40cb4cecad3e64f0f099d4dc888534b1
Size

2.9MB
MD5

40cb4cecad3e64f0f099d4dc888534b1
SHA1

7ffa75834dbb6447d8c4d58c7a1cae578e486ba7
SHA256

bc0f4bd0bdd8148776e96d369e12436ce4b8828a3bb60c3b9eb082ba662c19bd
SHA512

ed7d4106e5098d1ceb6478e61d30506791e6ae5c4fdc2acd22ee63bad2d834d10f5a339a4713d8a6f27eee73c9d194977780ce26911b155cb1d6b264730fe2c6
SSDEEP

49152:fRHeTQKP6bSKBNbk1jErYc2WzryMhpxQqbrsI8OFP4M338dB2IBlGuuDVUsdxxjl:ftmP65BNCjEkc/z2tVPOFgg3gnl/IVU8

Score

10^/10

upx isfb gozi

Family

gozi

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40cb4cecad3e64f0f099d4dc888534b1