General

  • Target

    bbe660a686e731e57019dcca9e7acd1a

  • Size

    2.9MB

  • MD5

    bbe660a686e731e57019dcca9e7acd1a

  • SHA1

    b1f2d1207f4deffc06f5a8d9d79f71d1c5f42795

  • SHA256

    1d1f6158e002a614569cf732706563478c31c021ef35d6a6750c1301d2c6275c

  • SHA512

    d98750e053cac65cb78e3a093918ebbe11e6718dc3ee855bb91f8acf713d9f4819c2848d931127b39254e060906e27734dd29673d7e209bf38d744b2fbb7a03c

  • SSDEEP

    49152:MdyeMiGX652zUI5Zkbx2kFko9Baj8BBT4SfcsUjoh48TyMPkXdwkyZ:MdyeGzv5ZkVVGoHau42c1joCjMPkNwk6

Score
10/10

Malware Config

Extracted

Family

gozi

Signatures

  • Gozi family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • bbe660a686e731e57019dcca9e7acd1a
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections