gozi | 1f84cfcb80b997a9543dd06983f18d44cd3b99d04876c72ab9ef464165b35d5f | Triage

Submit
Reports

Overview

overview

Static

static

1f84cfcb80...5f.exe

windows7-x64

1

1f84cfcb80...5f.exe

windows10-2004-x64

Sharing

General

Target

1f84cfcb80b997a9543dd06983f18d44cd3b99d04876c72ab9ef464165b35d5f
Size

364KB
Sample

240430-ygp63sgd93
MD5

2ddd81af5667862835fdc9cc1f088b1d
SHA1

ccce35e23b40a7ceefd484dd4f031207b0dbff1d
SHA256

1f84cfcb80b997a9543dd06983f18d44cd3b99d04876c72ab9ef464165b35d5f
SHA512

f06fca5b1cc30c33fc179e7ff01c24b1dcc01f65f1be36072a3014cb5ae04a8efa15a3a72e403824023ea133c55f598736cded103c13d10822b5a46c5b21a4ae
SSDEEP

1536:4qLzXF8CvrJ4PBhDP35Y6h/lProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:jLh8k6DP3u6h/ltOrWKDBr+yJb

Score

10^/10

gozi banker isfb trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

1f84cfcb80b997a9543dd06983f18d44cd3b99d04876c72ab9ef464165b35d5f.exe

Resource

win7-20240221-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

1f84cfcb80b997a9543dd06983f18d44cd3b99d04876c72ab9ef464165b35d5f.exe

Resource

win10v2004-20240226-en

gozi banker isfb trojan

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

gozi

Targets

- Target
  
  1f84cfcb80b997a9543dd06983f18d44cd3b99d04876c72ab9ef464165b35d5f
- Size
  
  364KB
- MD5
  
  2ddd81af5667862835fdc9cc1f088b1d
- SHA1
  
  ccce35e23b40a7ceefd484dd4f031207b0dbff1d
- SHA256
  
  1f84cfcb80b997a9543dd06983f18d44cd3b99d04876c72ab9ef464165b35d5f
- SHA512
  
  f06fca5b1cc30c33fc179e7ff01c24b1dcc01f65f1be36072a3014cb5ae04a8efa15a3a72e403824023ea133c55f598736cded103c13d10822b5a46c5b21a4ae
- SSDEEP
  
  1536:4qLzXF8CvrJ4PBhDP35Y6h/lProNVU4qNVUrk/9QbfBr+7GwKrPAsqNVU:jLh8k6DP3u6h/ltOrWKDBr+yJb
Score

10^/10

gozi banker isfb trojan
- Gozi
  Gozi is a well-known and widely distributed banking trojan.
  banker trojan gozi
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

gozibankerisfbtrojan

© 2018-2025

Terms | Privacy