gozi | 5affde8197f0f676aa49122e95c65808

General

Target

5affde8197f0f676aa49122e95c65808
Size

5.8MB
MD5

5affde8197f0f676aa49122e95c65808
SHA1

55fc3bec0256b724ba99ad4d170b7171cbecf075
SHA256

946d4bf913475649109eb762639798a25d4a709e7c28701318b5140bbe7915dd
SHA512

d51306e831b6e6dab03be4f869ede1026a3542e9c884bb2e4a68db7b8083a3b0100702a3c52d652879de359292b81157dd7eaba5aadefa9d66e53c90aba7ce7a
SSDEEP

98304:g0iSWxPbxX+oosNN2gg3gnl/IVUs1jePsx8Igs3teWNRN2YZgg3gnl/IVUs1jePs:viSWxP13HNNygl/iBiPw8ITtD3/gl/ii

Score

10^/10

upx isfb gozi

Family

gozi

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5affde8197f0f676aa49122e95c65808