gozi | 47b998d2b05deb9025ee4a6c4322fc1f

General

Target

47b998d2b05deb9025ee4a6c4322fc1f
Size

2.9MB
MD5

47b998d2b05deb9025ee4a6c4322fc1f
SHA1

633b49a004d0eb81676b1021742820c2b582bccd
SHA256

ecbe513556c6c83fb27cece19fae9dfb611f01df480731cf26498ac1f4ecb605
SHA512

d4fe5074bcb3690d6b952b1095cbfb6abf151d5e12d99385527878b38fefa9bc794f78b1ab3571f0a4f2dcf1e9208926403a3a28a05d4f50d4717a6b7c8122ae
SSDEEP

49152:8oX/6e1dKYDTV1So3iv9uoDP4M338dB2IBlGuuDVUsdxxjeQZwxPYRKs:7X/LYYZ8oOTgg3gnl/IVUs1jePs

Score

10^/10

upx isfb gozi

Family

gozi

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
47b998d2b05deb9025ee4a6c4322fc1f