Overview

overview

10

Static

static

10

4b61eaa5ff...04.exe

windows7-x64

7

4b61eaa5ff...04.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    4b61eaa5ff9721231bcbccb93d73bc04

  • Size

    2.9MB

  • MD5

    4b61eaa5ff9721231bcbccb93d73bc04

  • SHA1

    27197a61292462e07e62655fdf9a47a53099c0ff

  • SHA256

    f7b59c5b94bcf97f67ff00de3a1a4cb75c18e78a2472974457efa70367be8da2

  • SHA512

    1632e6595cf479674523d466a26e543d59cbb10cf7c8ce1b4190f3ce3a8b03a54541e54c5c1d9fdc03ee4349ae176e6748d6b03298a63bd1db2df80fda04e002

  • SSDEEP

    49152:0I/HvMAiga2kqXwGz+1wXP4M338dB2IBlGuuDVUsdxxjeQZwxPYRKs:R/Xid2jX7yIgg3gnl/IVUs1jePs

Score
10/10
upxisfbgozi

Malware Config

Extracted

Family

gozi

Signatures

  • Gozi family
    gozi
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4b61eaa5ff9721231bcbccb93d73bc04
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections