Overview

overview

10

Static

static

10

d41cc28d99...67.exe

windows7-x64

10

d41cc28d99...67.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    d41cc28d99accfede2ed16bf28194267

  • Size

    2.9MB

  • MD5

    d41cc28d99accfede2ed16bf28194267

  • SHA1

    c8f621f4cafcfda2ead90afb645d56a5f0fde321

  • SHA256

    8ec5819387243588a686982e8a8e8a22570fb0e0e2f2135caaeba2fb1537ac9e

  • SHA512

    ba9434524dc265aac28fd981410d4673fce46e5223cc71f08261617c1687f2ac4736e359086e0c7c93251b9d007a4510e775538d65cb65d4b22bb46928f88449

  • SSDEEP

    49152:p7duzulQx/vbDxwfIXoAxFH7P4M338dB2IBlGuuDVUsdxxjeQZwxPYRKs:phP+Puf2JxFH7gg3gnl/IVUs1jePs

Score
10/10
upxisfbgozi

Malware Config

Extracted

Family

gozi

Signatures

  • Gozi family
    gozi
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d41cc28d99accfede2ed16bf28194267
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections