General

  • Target

    49fca0bda0e46b1bf70e9b4aad12cc98

  • Size

    52KB

  • MD5

    49fca0bda0e46b1bf70e9b4aad12cc98

  • SHA1

    fdfe58f6a38cd86a5450e929f968b0c265fbebc7

  • SHA256

    aa291b2443e1e8b4aea58a5127d9c55b5996578e60a79bfcdb976a9b6eaca782

  • SHA512

    cfb4abdeb3e2e3581904bb82d281163c90e2e7cdd1a652fa5504ffd29232fbc8f93b919260daa67e3ab23a0ddf5dbaf0dbc9560615a3f773c325d3e12f87a68c

  • SSDEEP

    768:6P+o2H/bSt2Zt1qwNHfczNJQzQLsF2PN9r8Aew7LY:mO/bUtwJmbwQLsFUPeiY

Score
10/10

Malware Config

Extracted

Family

gozi

Signatures

  • Gozi family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 49fca0bda0e46b1bf70e9b4aad12cc98
    .exe windows:4 windows x86 arch:x86

    b4be654700344f3a01d12b5b56049d2c


    Headers

    Imports

    Sections