gozi | eccded5bae97d375cb00523238d3d688df33fe1fccdcd9e1af0973f2fdd3f6fa | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

7

960fa59354...01.exe

windows7-x64

960fa59354...01.exe

windows10-2004-x64

7

Sharing

General

Target

960fa5935476e6fce5542912c57e4301
Size

2.7MB
Sample

240212-dfct5saf2y
MD5

960fa5935476e6fce5542912c57e4301
SHA1

0b89040eb4d77d39c6554ccca7eb7d574b5aae94
SHA256

eccded5bae97d375cb00523238d3d688df33fe1fccdcd9e1af0973f2fdd3f6fa
SHA512

d240c001b9c7e533b4616f032064cffc38121dfb60bbfab49a5e3686114e39237250a7f1fd65c75a9aed1f3731a19cae0d74397a5f9225b31bd451362b32503e
SSDEEP

49152:OpOOJSFqB4nx9cdUBw7WEvIN3ztG/H4/jnOYplIQLnBw:tOJSFqB4x9djeINhCgnO6V

Score

10^/10

gozi banker isfb trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

960fa5935476e6fce5542912c57e4301.exe

Resource

win7-20231129-en

gozi banker isfb trojan upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

960fa5935476e6fce5542912c57e4301.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  960fa5935476e6fce5542912c57e4301
- Size
  
  2.7MB
- MD5
  
  960fa5935476e6fce5542912c57e4301
- SHA1
  
  0b89040eb4d77d39c6554ccca7eb7d574b5aae94
- SHA256
  
  eccded5bae97d375cb00523238d3d688df33fe1fccdcd9e1af0973f2fdd3f6fa
- SHA512
  
  d240c001b9c7e533b4616f032064cffc38121dfb60bbfab49a5e3686114e39237250a7f1fd65c75a9aed1f3731a19cae0d74397a5f9225b31bd451362b32503e
- SSDEEP
  
  49152:OpOOJSFqB4nx9cdUBw7WEvIN3ztG/H4/jnOYplIQLnBw:tOJSFqB4x9djeINhCgnO6V
Score

10^/10

gozi banker isfb trojan upx
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

gozibankerisfbtrojanupx

behavioral2

© 2018-2025

Terms | Privacy